CVE-2025-52865 | QNAP File Station prior 5.5.6.5018 User Account null pointer dereference (qsa-25-38)

A vulnerability, which was classified as problematic, was found in QNAP File Station 5.5.6.4741/5.5.6.4791/5.5.6.4847/5.5.6.4907/5.5.6.4933. This issue affects some unknown processing of the component User Account Handler. Executing manipulation can lead to null pointer dereference.

This vulnerability is tracked as CVE-2025-52865. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More