File Station 5_CVE-2025-54162

4.8 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

Description

A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.

We have already fixed the vulnerability in the following version:
File Station 5 5.5.6.5068 and later

Basic Information

ID CVE-2025-54162

Source qnap

Published Feb 11, 2026 at 12:17

Affected Product

Vendor QNAP Systems Inc.

Product File Station 5

Version 5.5.x

Affected Versions QNAP Systems Inc. File Station 5 5.5.x

CWE Classification

CWE-22 CWE-73

References

www.qnap.com /en/security-advisory/qsa-26-03

{
    "lastseen": "",
    "description": "A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.\n\nWe have already fixed the vulnerability in the following version:\nFile Station 5 5.5.6.5068 and later",
    "published": "2026-02-11T12:17:56.681Z",
    "modified": "2026-02-11T12:17:56.681Z",
    "type": "cve",
    "title": "File Station 5",
    "source": "qnap",
    "references": "https://www.qnap.com/en/security-advisory/qsa-26-03",
    "id": "CVE-2025-54162",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22",
        "CWE-73"
    ],
    "cvelist": null,
    "sourceData": "QNAP Systems Inc. File Station 5 5.5.x",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "File Station 5",
    "version": "5.5.x",
    "vendor": "QNAP Systems Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}