Primary

Context

QNAP File Station 5 Resource Exhaustion Vulnerability

Vulnerability

A vulnerability allowing resource exhaustion has been identified in QNAP File Station 5, specifically in versions 5.5.x prior to 5.5.6.4907. This vulnerability arises from an allocation of resources without limits or throttling. If a remote attacker gains access to a user account, they can exploit this vulnerability to disrupt the availability of resources, preventing other systems, applications, or processes from accessing the same type of resource.

Impact

Exploitation of this vulnerability can lead to resource exhaustion, causing disruptions in resource availability for other systems, applications, or processes.

Remediation

Users are advised to update QNAP File Station 5 to version 5.5.6.4907 or later. Instructions for updating the application are available on the QNAP website.

Added: Aug 29, 2025, 6:45 PM

Updated: Aug 29, 2025, 6:45 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

QNAP File Station 5 Resource Exhaustion Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating