Unrated severityCISA KEVNVD Advisory· Published Feb 3, 2021· Updated Oct 21, 2025

improper access control vulnerability in Helpdesk

CVE-2020-2506

Description

The vulnerability have been reported to affect earlier versions of QTS. If exploited, this improper access control vulnerability could allow attackers to compromise the security of the software by gaining privileges, or reading sensitive information. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.3.

Affected products

QNAP Systems Inc./Helpdeskv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.qnap.com/zh-tw/security-advisory/qsa-20-08mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.014
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000