The vulnerability have been reported to affect earlier versions of QTS. If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.3.
References
Link | Resource |
---|---|
https://www.qnap.com/zh-tw/security-advisory/qsa-20-08 | Vendor Advisory |
Configurations
History
26 Mar 2021, 19:11
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-78 |
11 Mar 2021, 15:15
Type | Values Removed | Values Added |
---|---|---|
Summary | The vulnerability have been reported to affect earlier versions of QTS. If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.3. |
05 Feb 2021, 21:31
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CPE | cpe:2.3:a:qnap:helpdesk:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://www.qnap.com/zh-tw/security-advisory/qsa-20-08 - Vendor Advisory | |
CWE | CWE-863 |
03 Feb 2021, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-02-03 16:15
Updated : 2023-12-10 13:41
NVD link : CVE-2020-2507
Mitre link : CVE-2020-2507
CVE.ORG link : CVE-2020-2507
JSON object : View
Products Affected
qnap
- helpdesk