Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
6DescriptionCVE.org
A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version: File Station 5 5.5.6.4847 and later
AnalysisAI
NULL pointer dereference vulnerability in QNAP File Station 5 that allows authenticated remote attackers to trigger a denial-of-service condition by causing the application to crash. While the CVSS 7.5 score reflects the severity of availability impact, the vulnerability requires valid user credentials to exploit, making it primarily a risk for organizations with compromised or malicious insider accounts. The vendor has released patches in version 5.5.6.4847 and later.
Technical ContextAI
The vulnerability resides in QNAP File Station 5 (CPE: cpe:2.3:a:qnap:file_station:5:*:*:*:*:*:*:*), a file management application commonly deployed on QNAP NAS devices. The root cause is classified under CWE-476 (NULL Pointer Dereference), which occurs when the application attempts to dereference a pointer that has not been properly initialized or validated before use. This type of memory safety flaw typically results from insufficient input validation or error handling during file operations or session management within File Station's backend services. The NULL pointer dereference likely occurs in a code path that processes authenticated user requests, possibly related to file operations, metadata handling, or session state management.
RemediationAI
- action: Immediate Patch; description: Upgrade File Station 5 to version 5.5.6.4847 or later. Apply patches through QNAP's official security advisories and firmware update mechanisms.
- action: Access Control; description: Implement strict authentication controls and restrict File Station 5 access to trusted users only. Enforce strong passwords and multi-factor authentication (MFA) if supported by the NAS platform.
- action: Network Segmentation; description: Isolate File Station 5 and underlying NAS devices on protected network segments with restricted access from untrusted networks. Use firewall rules to limit administrative access.
- action: Monitoring; description: Monitor File Station 5 service logs for unexpected crashes or DoS patterns. Implement alerting for service restarts or availability anomalies.
- action: Audit User Accounts; description: Conduct an audit of all File Station 5 user accounts and remove or disable unnecessary accounts, particularly those with elevated privileges.
More in File Station
View allCVE-2025-33031 is an improper certificate validation vulnerability in Synology File Station 5 that allows authenticated
CVE-2025-30279 is an improper certificate validation vulnerability in QNAP File Station 5 that allows authenticated remo
CVE-2025-29885 is an improper certificate validation vulnerability in Synology File Station 5 that allows authenticated
CVE-2025-29884 is an improper certificate validation vulnerability affecting Synology File Station 5 that allows authent
CVE-2025-29883 is an improper certificate validation vulnerability affecting Synology File Station 5 that allows authent
CVE-2025-22486 is an improper certificate validation vulnerability in Synology File Station 5 that allows authenticated
An improper neutralization of directives in statically saved code ('Static Code Injection') vulnerability has been repor
Denial-of-service vulnerability in QNAP File Station 5 that allows an authenticated attacker to exhaust system resources
NULL pointer dereference vulnerability in QNAP File Station 5 that allows authenticated remote attackers to trigger a de
NULL pointer dereference vulnerability affecting QNAP File Station 5 that allows authenticated remote attackers to trigg
NULL pointer dereference vulnerability in QNAP File Station 5 that allows authenticated remote attackers to trigger a de
A weak authentication vulnerability has been reported to affect File Station 5. The remote attackers can then exploit th
Same weakness CWE-476 – NULL Pointer Dereference
View allSame technique Null Pointer Dereference
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-17333