Vulnerabilities > Qnap > Helpdesk > 1.1.20
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-28814 | Unspecified vulnerability in Qnap Helpdesk An improper access control vulnerability has been reported to affect QNAP NAS. | 8.8 |
| 2021-02-03 | CVE-2020-2507 | OS Command Injection vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of QTS. | 7.5 |
| 2021-02-03 | CVE-2020-2506 | Unspecified vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of QTS. | 9.8 |
| 2020-09-11 | CVE-2018-19948 | Cross-Site Request Forgery (CSRF) vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 4.3 |
| 2020-09-11 | CVE-2018-19947 | Information Exposure Through an Error Message vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 4.0 |
| 2020-09-11 | CVE-2018-19946 | Improper Certificate Validation vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 4.3 |
| 2020-07-01 | CVE-2020-2500 | Use of Hard-coded Credentials vulnerability in Qnap Helpdesk This improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. | 6.4 |
| 2019-12-04 | CVE-2018-0728 | Improper Privilege Management vulnerability in Qnap Helpdesk This improper access control vulnerability in Helpdesk allows attackers to access the system logs. | 5.0 |
| 2018-08-13 | CVE-2018-0714 | Command Injection vulnerability in Qnap Helpdesk Command injection vulnerability in Helpdesk versions 1.1.21 and earlier in QNAP QTS 4.2.6 build 20180531, QTS 4.3.3 build 20180528, QTS 4.3.4 build 20180528 and their earlier versions could allow remote attackers to run arbitrary commands in the compromised application. | 7.5 |