CVE-2026-26240 - Vulnerability Details

Description

A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes.

We have already fixed the vulnerability in the following version:
File Station 5 5.5.6.5243 and later

Published: 2026-06-10

Score: 1.3 Low

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A stack-based buffer overflow exists in QNAP Systems’ File Station 5. The flaw permits a remote attacker to send input that exceeds a memory buffer, potentially corrupting stack memory and allowing the attacker to alter memory contents or to cause the file handling processes to terminate unexpectedly. The vulnerability is classified as a CWE-121 weakness, and while the advisory does not explicitly confirm code execution, an attacker who controls the overflow payload could theoretically inject malicious code based on the nature of the overflow.

Affected Systems

The flaw affects all QNAP File Station 5 installations running versions earlier than 5.5.6.5243. QNAP has released a fix in version 5.5.6.5243 and later. Any system that has not applied the update remains vulnerable, regardless of its network configuration or the operating system it runs on.

Risk and Exploitability

The CVSS score of 1.3 indicates low severity. The EPSS score of < 1% indicates a very low probability of exploitation. The vulnerability is not listed in the CISA KEV catalog, implying no widely known active exploits at this time. The description indicates the flaw can be triggered remotely through the File Station service, and it appears exploitable without special local privileges. While code execution is not explicitly documented, it is inferred that an attacker could achieve it by crafting a malicious overflow payload.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

QNAP Systems Inc.

File Station 5

unaffected

Version	Status	Constraints
`5.5.0`	affected	< 5.5.6.5243

Configuration 1 [-]

cpe:2.3:a:qnap:file_station:*:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Qnap Systems

File Station 5

92%

Version	Status	Scheme	Platform
`[5.5.0,5.5.6.5243)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

Vendor Solution

We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5243 and later

OpenCVE Recommended Actions

Update QNAP File Station to version 5.5.6.5243 or later.
Restrict access to the File Station interface to authenticated users only, ensuring that only trusted accounts can reach the service.
Place the File Station service behind a firewall or limit its accessibility to a trusted internal network segment to reduce exposure.

Generated by OpenCVE AI on June 17, 2026 at 18:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction Passive

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00318.

Exploitation none

Automatable yes

Technical Impact partial

References

Link	Providers
https://www.qnap.com/en/security-advisory/qsa-26-10
https://www.qnap.com/en/security-advisory/qsa-26-32

History

Wed, 17 Jun 2026 05:15:00 +0000

Type	Values Removed	Values Added
References		https://www.qnap.com/en/security-advisory/qsa-26-10
Metrics	cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N'}`	cvssV4_0 `{'score': 1.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:U'}`

Fri, 12 Jun 2026 13:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Qnap Qnap file Station
CPEs		cpe:2.3:a:qnap:file_station::::::::
Vendors & Products		Qnap Qnap file Station
Metrics		cvssV3_1 `{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H'}`

Wed, 10 Jun 2026 15:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 10 Jun 2026 10:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Qnap Systems Qnap Systems file Station 5
Vendors & Products		Qnap Systems Qnap Systems file Station 5

Wed, 10 Jun 2026 05:15:00 +0000

Type	Values Removed	Values Added
Description		A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5243 and later
Title		File Station 5
Weaknesses		CWE-121
References		https://www.qnap.com/en/security-advisory/qsa-26-32
Metrics		cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N'}`

Subscriptions

Qnap File Station

Qnap Systems File Station 5

MITRE

Status: PUBLISHED

Assigner: qnap

Published: 2026-06-10T05:03:37.758Z

Updated: 2026-06-17T01:46:43.899Z

Reserved: 2026-02-12T02:21:35.483Z

Link: CVE-2026-26240

Vulnrichment

Updated: 2026-06-10T15:04:38.463Z

NVD

Status : Analyzed

Published: 2026-06-10T05:16:38.987

Modified: 2026-06-12T12:52:58.360

Link: CVE-2026-26240

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-17T18:45:10Z

Weaknesses

CWE-121
Stack-based Buffer Overflow

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction Passive

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object