What is the CVSS score of CVE-2025-29885?

CVE-2025-29885 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of File Station are affected by CVE-2025-29885?

Synology File Station 5 contains an improper certificate validation flaw (CVE-2025-29885, CVSS 8.8) that allows authenticated users to compromise confidentiality, integrity, and availability of the…. A patch is available.

How to fix or mitigate CVE-2025-29885?

Within 24 hours: inventory all Synology File Station 5 deployments and identify current versions. Within 7 days: upgrade File Station 5 to version 5.5.6.4791 or later on all systems; verify patch deployment via Synology management console. Within 30 days: audit access logs for suspicious authenticated activity since deployment; review user access permissions and disable unnecessary accounts.

File Station CVE-2025-29885

EUVD-2025-17346 HIGH

Improper Certificate Validation (CWE-295)

2025-06-06 security@qnapsecurity.com.tw

Authentication Bypass Synology File Station

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 16, 2026 - 06:44 EUVD-patch-fix

executive_summary

Re-analysis Queued

Apr 16, 2026 - 05:29 backfill_euvd_patch

patch_released

Patch available

Apr 16, 2026 - 05:29 EUVD

5.5.6.4791

EUVD ID Assigned

Mar 14, 2026 - 18:10 euvd

EUVD-2025-17346

Analysis Generated

Mar 14, 2026 - 18:10 vuln.today

CVE Published

Jun 06, 2025 - 16:15 nvd

HIGH 8.8

DescriptionNVD

An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system.

We have already fixed the vulnerability in the following versions: File Station 5 5.5.6.4791 and later and later

AnalysisAI

CVE-2025-29885 is an improper certificate validation vulnerability in Synology File Station 5 that allows authenticated remote attackers to compromise system confidentiality, integrity, and availability. The vulnerability affects File Station 5 versions prior to 5.5.6.4791 and requires valid user credentials to exploit. With a CVSS score of 8.8 and a low attack complexity, this represents a significant risk to organizations running vulnerable versions, though exploitation requires prior authentication.

Technical ContextAI

This vulnerability stems from improper X.509 certificate validation (CWE-295), likely affecting TLS/SSL certificate verification mechanisms within File Station 5's communication protocols or API endpoints. The vulnerability suggests that the application fails to properly validate certificate chains, expiration dates, or certificate authority signatures, potentially allowing man-in-the-middle attacks or unauthorized system access after initial authentication. The root cause appears to be in the certificate validation logic used during secure communications, possibly in the underlying HTTP client library, HTTPS implementation, or inter-service communication channels within File Station 5. Affected product: CPE context points to Synology File Station 5 versions before 5.5.6.4791.

RemediationAI

Upgrade File Station 5 to version 5.5.6.4791 or later; priority: Critical; details: Vendors have released patched versions that fix improper certificate validation. Immediate patching is required for all affected installations. Interim Mitigation: Restrict File Station 5 access to trusted networks and users; details: Implement network segmentation to limit exposure to authenticated users. This reduces attack surface while patches are being deployed. Interim Mitigation: Monitor certificate validation failures and authentication anomalies; details: Enable detailed logging for HTTPS/TLS errors and suspicious authentication patterns to detect potential exploitation attempts. Interim Mitigation: Review and minimize user access privileges; details: Since exploitation requires valid user credentials, limit the number of users with File Station 5 access and apply principle of least privilege.

More from same product – last 7 days

CVE-2025-12686 CRITICAL Act Now

9.8 May 27

Remote code execution in Synology BeeStation OS versions before 1.3.2-65648 stems from a classic buffer overflow in the

CVE-2025-13392 HIGH This Week

8.1 May 27

Authentication bypass in Synology DiskStation Manager (DSM) SSO lets remote, unauthenticated attackers who already know

CVE-2025-14713 HIGH This Week

7.5 May 27

Credential disclosure in Synology C2 Identity Edge Server (DSM versions before 1.76.0-0307) allows remote unauthenticate

CVE-2026-2237 MEDIUM This Month

6.2 May 27

Volume encryption in Synology Storage Manager before version 1.0.1-1100 transmits sensitive data via HTTP GET query stri

CVE-2025-13593 MEDIUM This Month

6.1 May 27

Arbitrary file write with restricted content in Synology ActiveProtect Agent before 1.1.0-0439 is exploitable by local u

CVE-2025-29885 vulnerability details – vuln.today

Back

File Station CVE-2025-29885

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code