CVE-2025-29874: CWE-476 in QNAP Systems Inc. File Station 5
A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.4907 and later
CVE-2025-29874: CWE-476 in QNAP Systems Inc. File Station 5
Description
A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.4907 and later
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- qnap
- Date Reserved
- 2025-03-12T08:06:37.742Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 68b1e0bead5a09ad0079a9ce
Added to database: 8/29/2025, 5:17:50 PM
Last updated: 8/29/2025, 5:17:50 PM
Views: 1
Related Threats
CVE-2025-9664: SQL Injection in code-projects Simple Grading System
MediumCVE-2025-9663: SQL Injection in code-projects Simple Grading System
MediumCVE-2025-22483: CWE-79 in QNAP Systems Inc. License Center
HighCVE-2025-29879: CWE-476 in QNAP Systems Inc. File Station 5
MediumCVE-2025-29878: CWE-476 in QNAP Systems Inc. File Station 5
MediumActions
External Links
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.