Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-57707

An improper neutralization of directives in statically saved code ('Static Code Injection') vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to access restricted data / files. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5166 and later
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.2%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2025-57707
  • Qnap » File Station » Version: 5.5.6.4691
    cpe:2.3:a:qnap:file_station:5.5.6.4691
  • Qnap » File Station » Version: 5.5.6.4715
    cpe:2.3:a:qnap:file_station:5.5.6.4715
  • Qnap » File Station » Version: 5.5.6.4741
    cpe:2.3:a:qnap:file_station:5.5.6.4741
  • Qnap » File Station » Version: 5.5.6.4783
    cpe:2.3:a:qnap:file_station:5.5.6.4783
  • Qnap » File Station » Version: 5.5.6.4791
    cpe:2.3:a:qnap:file_station:5.5.6.4791
  • Qnap » File Station » Version: 5.5.6.4847
    cpe:2.3:a:qnap:file_station:5.5.6.4847
  • Qnap » File Station » Version: 5.5.6.4907
    cpe:2.3:a:qnap:file_station:5.5.6.4907
  • Qnap » File Station » Version: 5.5.6.4933
    cpe:2.3:a:qnap:file_station:5.5.6.4933
  • Qnap » File Station » Version: 5.5.6.5018
    cpe:2.3:a:qnap:file_station:5.5.6.5018
  • Qnap » File Station » Version: 5.5.6.5068
    cpe:2.3:a:qnap:file_station:5.5.6.5068


Products
Pricing
Contact Us

Shodan ® - All rights reserved