Unrated severityNVD Advisory· Published Nov 7, 2025· Updated Nov 7, 2025
Download Station
CVE-2025-58463
Description
A relative path traversal vulnerability has been reported to affect Download Station. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following versions: Download Station 5.10.0.305 ( 2025/09/16 ) and later Download Station 5.10.0.304 ( 2025/09/08 ) and later
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- QNAP Systems Inc./Download Stationv5Range: 5.10.x
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.