安全ID : QSA-25-52
Multiple Vulnerabilities in License Center
发布日期 : January 3, 2026
通用漏洞披露 : CVE-2025-52871, CVE-2025-53597
受影响产品: License Center 2.0.x
严重程度
Moderate
状态
已解决
Summary
Multiple vulnerabilities have been reported to affect License Center:
- CVE-2025-52871: Out-of-bounds read vulnerability
If a remote attacker gains access to a user account, they can then exploit the vulnerability to obtain secret data. - CVE-2025-53597: Buffer overflow vulnerability
If a remote attacker gains access to an administrator account, they can then exploit the vulnerability to modify memory or crash processes.
We have already fixed the vulnerabilities in the following version:
| Affected Product | Fixed Version |
| License Center 2.0.x | License Center 2.0.36 and later |
Recommendation
To fix the vulnerabilities, we recommend updating License Center to the latest version.
Updating License Center
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "License Center" and then press ENTER.
License Center appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your License Center is already up to date. - Click OK.
The system updates the application.
附件
致谢: coral
修订历史:
V1.0 (January 3, 2026) - Published
