Every CVE whose affected-product data names Qnap Helpdesk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2018-0714 — CVSS 9.8 (critical): Command injection vulnerability in Helpdesk versions 1.1.21 and earlier in QNAP QTS 4.2.6 build 20180531, QTS 4.3.3 build 20180528, QTS…
CVE-2020-2500 — CVSS 9.8 (critical): This improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. Attackers can access the…
CVE-2020-2507 — CVSS 9.8 (critical): The vulnerability have been reported to affect earlier versions of QTS. If exploited, this command injection vulnerability could allow…
CVE-2024-50394 — CVSS 8.8 (high): An improper certificate validation vulnerability has been reported to affect Helpdesk. If exploited, the vulnerability could allow remote…
CVE-2021-28814 — CVSS 8.8 (high): An improper access control vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows remote attackers to…
CVE-2018-0728 — CVSS 7.5 (high): This improper access control vulnerability in Helpdesk allows attackers to access the system logs. To fix the vulnerability, QNAP recommend…
CVE-2018-19947 — CVSS 4.3 (medium): The vulnerability have been reported to affect earlier versions of Helpdesk. If exploited, this information exposure vulnerability could…
CVE-2018-19946 — CVSS 4.2 (medium): The vulnerability have been reported to affect earlier versions of Helpdesk. If exploited, this improper certificate validation…
CVE-2024-27125 — CVSS 3.5 (low): A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited, the vulnerability could allow authenticated…
CVE-2018-19948 — CVSS 2.0 (low): The vulnerability have been reported to affect earlier versions of Helpdesk. If exploited, this cross-site request forgery (CSRF)…