CVE-2025-53409

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-53409

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-53409.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-53409

Published

2025-11-07T16:15:39.247Z

Modified

2026-03-13T03:31:09.799615Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

An allocation of resources without limits or throttling vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.

We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5018 and later

References

https://www.qnap.com/en/security-advisory/qsa-25-38

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-53409.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "5.5.6.4691"
            },
            {
                "fixed": "5.5.6.5018"
            }
        ]
    }
]