{
  "affected": [
    {
      "database_specific": {
        "unresolved_ranges": [
          {
            "events": [
              {
                "introduced": "1.8.0.872"
              },
              {
                "fixed": "1.8.2.923"
              }
            ]
          }
        ]
      }
    }
  ],
  "details": "A cross-site request forgery (CSRF) vulnerability has been reported to affect QuLog Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities.\n\nWe have already fixed the vulnerability in the following version:\nQuLog Center 1.8.2.927 ( 2025/09/17 ) and later",
  "id": "CVE-2025-58469",
  "modified": "2026-03-10T21:52:38.635630847Z",
  "published": "2025-11-07T16:15:41.387Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://www.qnap.com/en/security-advisory/qsa-25-42"
    }
  ],
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}