Helpdesk Security Vulnerabilities and Issues — Helpdesk CVE List

Lucene search

QnapHelpdesk

4 matches found

CVE•added 2021/02/03 4:15 p.m.•948 views

CVE-2020-2506

The vulnerability have been reported to affect earlier versions of QTS. If exploited, this improper access control vulnerability could allow attackers to compromise the security of the software by gaining privileges, or reading sensitive information. This issue affects: QNAP Systems Inc. Helpdesk v...

9.8CVSS8.5AI score0.29202EPSS

CVE•added 2021/02/03 4:15 p.m.•163 views

CVE-2020-2507

The vulnerability have been reported to affect earlier versions of QTS. If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.3.

9.8CVSS9.8AI score0.01623EPSS

CVE•added 2020/07/01 4:15 p.m.•40 views

CVE-2020-2500

This improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. Attackers can access the sensitive data on QNAP Kayako server with API keys. We have replaced the API key to mitigate the vulnerability, and already fixed the issue in Helpdesk 3.0.1 and l...

9.8CVSS6.4AI score0.00255EPSS

CVE•added 2018/08/13 1:29 p.m.•37 views

CVE-2018-0714

Command injection vulnerability in Helpdesk versions 1.1.21 and earlier in QNAP QTS 4.2.6 build 20180531, QTS 4.3.3 build 20180528, QTS 4.3.4 build 20180528 and their earlier versions could allow remote attackers to run arbitrary commands in the compromised application.

9.8CVSS9.7AI score0.02291EPSS