File Station 5_CVE-2025-62856

1.3 / 10

LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U

Description

A path traversal vulnerability has been reported to affect File Station 5. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.

We have already fixed the vulnerability in the following version:
File Station 5 5.5.6.5190 and later

Basic Information

ID CVE-2025-62856

Source qnap

Published Feb 11, 2026 at 12:15

Affected Product

Vendor QNAP Systems Inc.

Product File Station 5

Version 5.5.x

Affected Versions QNAP Systems Inc. File Station 5 5.5.x

CWE Classification

CWE-22

References

www.qnap.com /en/security-advisory/qsa-26-03

{
    "lastseen": "",
    "description": "A path traversal vulnerability has been reported to affect File Station 5. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.\n\nWe have already fixed the vulnerability in the following version:\nFile Station 5 5.5.6.5190 and later",
    "published": "2026-02-11T12:15:55.297Z",
    "modified": "2026-02-11T12:15:55.297Z",
    "type": "cve",
    "title": "File Station 5",
    "source": "qnap",
    "references": "https://www.qnap.com/en/security-advisory/qsa-26-03",
    "id": "CVE-2025-62856",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "QNAP Systems Inc. File Station 5 5.5.x",
    "sourceHref": "",
    "cvss": {
        "score": 1.3,
        "severity": "LOW",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "File Station 5",
    "version": "5.5.x",
    "vendor": "QNAP Systems Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}