CVE-2026-26240— File Station 5

AI Predicted 9.8 Difficulty: Easy EPSS 0.32% · P23 Updated Jun 17, 2026

Possible ATT&CK Techniques 1AI

T1190 · Exploit Public-Facing Application

Affected Version Matrix 1

Vendor	Product	Version Range	Status
QNAP Systems Inc.	File Station 5	`5.5.0< 5.5.6.5243`	affected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-26240

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

File Station 5

Source: NVD (National Vulnerability Database)

Vulnerability Description

A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5243 and later

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

栈缓冲区溢出

Source: NVD (National Vulnerability Database)

Vulnerability Title

QNAP Systems File Station 5 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

QNAP Systems File Station 5是中国台湾威联通科技（QNAP Systems）公司的一个文件管理系统。 QNAP Systems File Station 5存在安全漏洞，该漏洞源于缓冲区溢出，可能导致远程攻击者修改内存或使进程崩溃。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
QNAP Systems Inc.	File Station 5	5.5.0 ~ 5.5.6.5243	-

II. Public POCs for CVE-2026-26240

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-26240

请登录查看更多情报信息。

Vendor Advisories for CVE-2026-26240 (2)

https://nvd.nist.gov/vuln/detail/CVE-2026-26240

Same Patch Batch · QNAP Systems Inc. · 2026-06-10 · 20 CVEs total

CVE-2026-22893		QTS, QuTS hero
CVE-2025-66276		QTS
CVE-2025-59382		QTS, QuTS hero, QuTScloud, QVP (QVR Pro appliances)
CVE-2025-58468		Notification Center
CVE-2025-62850		QuTS hero
CVE-2025-62851		License Center
CVE-2025-66273		QTS, QuTS hero
CVE-2025-66279		QTS, QuTS hero
CVE-2025-66280		QTS, QuTS hero
CVE-2025-66281		QTS, QuTS hero
CVE-2026-26241		File Station 5
CVE-2026-22899		File Station 5
CVE-2026-24720		File Station 5
CVE-2026-24716		QTS, QuTS hero
CVE-2026-24717		QTS, QuTS hero
CVE-2026-24719		QTS, QuTS hero
CVE-2026-26237		QuMagie
CVE-2026-26239		File Station 5
CVE-2026-24724		File Station 5

IV. Related Vulnerabilities

Same product: File Station 5

Same vendor: QNAP Systems Inc.

Same weakness: CWE-121

V. Comments for CVE-2026-26240

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-26240— File Station 5

Possible ATT&CK Techniques 1AI

Affected Version Matrix 1

I. Basic Information for CVE-2026-26240

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-26240

III. Intelligence Information for CVE-2026-26240

Vendor Advisories for CVE-2026-26240 (2)

Same Patch Batch · QNAP Systems Inc. · 2026-06-10 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-26240

Leave a comment