CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-26239

mediumcovered by 2 sourcesfirst seen 2026-06-24
A remote, authenticated or anonymous attacker can exploit multiple vulnerabilities in QNAP NAS to gain elevated privileges, bypass security mechanisms, cause a Denial of Service condition, execute arbitrary commands, disclose information, or achieve unspecified impacts.

CSIRTS triage

What
Multiple vulnerabilities have been identified in QNAP NAS devices.
Who is affected
Users of QNAP NAS devices.
Urgency
Remediation is necessary to protect against potential exploits.
Action
Users should monitor for updates and apply patches as they become available.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-26239

Get an email if CVE-2026-26239 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (2)

External references

NVD record for CVE-2026-26239

CVE.org record

Embed the live status

CVE-2026-26239 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-26239 status](https://www.csirts.com/badge/CVE-2026-26239)](https://www.csirts.com/cve/CVE-2026-26239)