| |
Vulnerability CVE-2018-19947
Published: 2020-09-11
| Description: |
The vulnerability have been reported to affect earlier versions of Helpdesk. If exploited, this information exposure vulnerability could disclose sensitive information. QNAP has already fixed the issue in Helpdesk 3.0.3 and later. |
Type:
CWE-209 (Information Exposure Through an Error Message)
CVSS2 => (AV:N/AC:L/Au:S/C:P/I:N/A:N)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
4/10 |
2.9/10 |
8/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
Single time |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
None |
None |
References: |
https://www.qnap.com/zh-tw/security-advisory/qsa-20-05
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
