Buffer Overflow Vulnerability in QNAP File Station Software
CVE-2026-26240

1.3LOW

Key Information:

Vendor

QNAP

Vendor
CVE Published:
10 June 2026

What is CVE-2026-26240?

A buffer overflow vulnerability has been identified in QNAP's File Station 5, allowing remote attackers to manipulate memory which may lead to process crashes or unauthorized modification. This vulnerability affects versions prior to 5.5.6.5243, and it is crucial for users to upgrade to the latest version to protect their systems from potential exploits.

Affected Version(s)

File Station 5 5.5.0 < 5.5.6.5243

References

CVSS V4

Score:
1.3
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Moritz Abrell, SySS GmbH
.