Every CVE whose affected-product data names Qnap Download Station, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-38640 — CVSS 5.4 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect Download Station. If exploited, the vulnerability could allow…
CVE-2025-58465 — CVSS 5.4 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect Download Station. If a remote attacker gains a user account, they…
CVE-2025-58463 — CVSS 4.9 (medium): A relative path traversal vulnerability has been reported to affect Download Station. If a remote attacker gains an administrator account…