CVE-2026-24724

N/A

An incorrect authorization vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to bypass intended access res...

Affects 0 products across 1 vendor.

CVSS v48.6
EPSS0.3%
Percentile17th
PatchUnknown
CWE Weakness Definitions
CWE-863: Incorrect Authorization

Software performs an authorization check incorrectly, allowing access beyond intended privileges.

◆ SAGE Intelligence — CITED Relevance Research Team

CVE-2026-24724 affects QNAP File Station 6, a web-based file management application commonly deployed on NAS devices used in enterprise and OT environments for file sharing and data transfer. A remote attacker who has obtained any valid user account can exploit an incorrect authorization flaw to bypass access controls, potentially accessing or modifying files beyond their permitted scope. In OT environments where NAS systems are used for historian data, configuration backups, or engineering file storage, this could enable unauthorized access to critical operational data or sabotage of control system files.

Is this CVE in your environment?

BreachSpider monitors your ICS/OT environment for vulnerabilities like this one. No agents or network access required. Free to start.

Check My Environment →
Frequently Asked Questions
What is CVE-2026-24724?
CVE-2026-24724 affects QNAP File Station 6, a web-based file management application commonly deployed on NAS devices used in enterprise and OT environments for file sharing and data transfer. A remote attacker who has obtained any valid user account can exploit an incorrect authorization flaw to bypass access controls, potentially accessing or modifying files beyond their permitted scope. In OT environments where NAS systems are used for historian data, configuration backups, or engineering file
Is CVE-2026-24724 actively exploited?
No confirmed active exploitation of CVE-2026-24724 as of 2026-06-24.
How do I remediate CVE-2026-24724?
Update to File Station 5 5.5.6.5243 or later. Remediation enforces correct server-side authorization validation in File Station to prevent authenticated users from accessing file resources outside their permitted scope. Note: CVE references File Station 6 as vulnerable while fix is listed for File Station 5 — consult QNAP directly to confirm File Station 6 patch status and versioning discrepancy. Advisory: https://www.qnap.com/en/security-advisory
What systems are affected by CVE-2026-24724?
CVE-2026-24724 affects: Qnap.
Vulnerability Details
CVE IDCVE-2026-24724
Published2026-06-10
Last Modified2026-06-10
ICS Relevance70%
Weakness (CWE)
SourceNVD
Official Description

An incorrect authorization vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to bypass intended access restrictions. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5243 and later

Source: NIST NVD / MITRE CVE Database

Affected Products
VendorProductFixed Version
Qnap —
Remediation

Fixed Version: File Station 5 5.5.6.5243

Remediation enforces correct server-side authorization validation in File Station to prevent authenticated users from accessing file resources outside their permitted scope. Note: CVE references File Station 6 as vulnerable while fix is listed for File Station 5 — consult QNAP directly to confirm File Station 6 patch status and versioning discrepancy.

View Vendor Advisory →
Threat Intelligence
● Threat Intelligence Validated: July 2026 | Threat Age: 32 Days
CISA KEVNot in KEV catalog
Public ExploitNot confirmed
PoC CodeNot confirmed
● Virtual Patch — CITED Relevance SAGE Engine LOW CONFIDENCE

Deploy at perimeter and OT DMZ firewalls: block all inbound HTTP/HTTPS traffic to QNAP NAS management interfaces (default ports 80, 443, 8080, 8081) from OT field networks and untrusted external sources. Whitelist only authorized administrative hosts. Implement web application firewall rules to detect repeated File Station API calls accessing paths outside the authenticated user's home directory. Monitor for lateral movement from NAS to historian or engineering workstations.

No reliable network detection signature exists for this vulnerability class — apply the compensating controls above and the vendor patch. SAGE only publishes a network rule when a concrete on-the-wire signature can be grounded in the advisory.

Virtual patch generated by CITED Relevance SAGE. Validate in isolated environment before production deployment. Compensating control only - does not replace vendor patch.

Related CVEs affecting Qnap
CVE-2017-7876 10.0 This command injection vulnerability in QTS allows attackers to run arbitrary... CVE-2024-32766 10.0 An OS command injection vulnerability has been reported to affect several QNA... CVE-2024-32764 9.9 A missing authentication for critical function vulnerability has been reporte... CVE-2017-17033 9.8 A buffer overflow vulnerability in password function in QNAP QTS version 4.2.... CVE-2017-17028 9.8 A buffer overflow vulnerability in external device function in QNAP QTS versi...
View all Qnap CVEs →

ICS/OT Vulnerability Intelligence for Your Environment

BreachSpider monitors 353,228 CVEs across ICS/OT vendors. SAGE-enriched alerts with virtual patches, NERC-CIP mapping, and PSIRT contacts delivered to your SIEM in minutes.

Join free →