Security ID : QSA-26-13
Vulnerability in Notification Center
CVE identifier : CVE-2025-58468
Affected products: Notification Center 1.10.x
Severity
Moderate
Status
Resolved
Summary
A cross-site request forgery (CSRF) vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities.
We have already fixed the vulnerability in the following version:
| Affected Product | Fixed Version |
| Notification Center 1.10.x | Notification Center 1.10.0.3291 and later |
Recommendation
To fix the vulnerability, we recommend updating Notification Center to the latest version.
Updating Notification Center
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type “Notification Center” and then press ENTER.
Notification Center appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your Notification Center is already up to date. - Click OK.
The application is updated.
Attachment
Acknowledgements: Tim Coen
Revision History:
V1.0 (March 10, 2026) - Published