File Station 5
CVE-2026-26241

5.3MEDIUM

Key Information:

Vendor: QNAP
Status: File Station 5
Vendor: CVE Published:; 10 June 2026

What is CVE-2026-26241?

A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes.

We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5243 and later

Affected Version(s)

File Station 5 5.5.0 < 5.5.6.5243

References

https://www.qnap.com/en/security-advisory/qsa-26-27

CVSS V4

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 10, 2026
Vulnerability Reserved
Feb 12, 2026

Credit

Moritz Abrell, SySS GmbH

CVE-2026-26241 Data

JSON

QNAP

What is CVE-2026-26241?

Affected Version(s)

References

CVSS V4

Timeline

Credit