Qnap: >> Helpdesk >> 3.0.3 Security Vulnerabilities
A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network.
We have already fixed the vulnerability in the following version:
Helpdesk 3.3.1 and later
CVSS Score
3.5
EPSS Score
0.002
Published
2024-09-06
An improper access control vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows remote attackers to compromise the security of the software. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.4.
CVSS Score
8.8
EPSS Score
0.007
Published
2021-06-11