CVE-2026-24724

CVSS Score & Metrics

Base Score

8.1 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N                                    

Vulnerability Description

An incorrect authorization vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to bypass intended access restrictions.

We have already fixed the vulnerability in the following version:
File Station 5 5.5.6.5243 and later

Vulnerability Details

Published Date

June 10, 2026

Last Modified

June 12, 2026

CWE ID

CWE-863

Source

NVD

Vendor

QNAP Systems Inc.

Product

File Station 5

External References

https://www.qnap.com/en/security-advisory/qsa-26-29

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment