安全ID : QSA-25-54
Vulnerability in Qfiling
发布日期 : January 3, 2026
通用漏洞披露 : CVE-2025-59384
受影响产品: Qfiling 3.13.x
严重程度
Important
状态
已解决
Summary
A path traversal vulnerability has been reported to affect Qfiling. If exploited, a remote attacker can read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
| Affected Product | Fixed Version |
| Qfiling 3.13.x | Qfiling 3.13.1 and later |
Recommendation
To fix the vulnerability, we recommend updating Qfiling to the latest version.
Updating Qfiling
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "Qfiling" and then press ENTER.
Qfiling appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your Qfiling is already up to date. - Click OK.
The system updates the application.
附件
致谢: Long Hà
修订历史:
V1.0 (January 3, 2026) - Published
