CVE-2025-29884HIGH 8.8EPSS p12.3%

CVE-2025-29884CVE-2025-29884

Description

An improper certificate validation vulnerability has been reported to affect File Station 5. If exploited, the vulnerability could allow remote attackers who have gained user access to compromise the security of the system. We have already fixed the vulnerability in the following versions: File Station 5 5.5.6.4791 and later and later

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.22% probability of exploitation · percentile 12.3% · 2026-06-18T12:00:27Z
Published2025-06-06
Last modified2025-06-18

Underlying weaknesses· 1

CWE-295

References

  1. https://www.qnap.com/en/security-advisory/qsa-25-09

1

TypeTargetConfidenceTier
WeaknessImproper Certificate Validationcwe-2950%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-29883
CVE
CVE-2025-29885
CVE
CVE-2025-22486
CVE
CVE-2025-30279
CVE
CVE-2025-33031
CVE
CVE-2026-24724
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.