QNAP patches critical QVR Pro flaw that could let remote attackers access vulnerable systems

QNAP has fixed a critical vulnerability in its QVR Pro surveillance software that could let remote attackers gain access to affected systems without authentication. The flaw, tracked as CVE-2026-22898, affects QVR Pro 2.7.x and is resolved in QVR Pro 2.7.4.1485 and later. QNAP’s advisory describes the issue as a “missing authentication for critical function” bug. […] The post QNAP patches critical QVR Pro flaw that could let remote attackers access vulnerable systems appeared first on VPN Central.