Search

Security ID : QSA-24-29

Vulnerability in Helpdesk

  • Release date : September 7, 2024

  • CVE identifier : CVE-2024-27125

  • Affected products: Helpdesk 3.3.x

Severity

Low

Status

Resolved

Summary

A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited, the vulnerability could allow remote attackers who have gained administrator access to inject malicious code.

  

We have already fixed the vulnerability in the following version:

Affected Product Fixed Version
Helpdesk 3.3.x Helpdesk 3.3.1 and later

Recommendation

To fix the vulnerability, we recommend updating Helpdesk to the latest version.

 

Updating Helpdesk

  1. Log on to QTS or QuTS hero as an administrator.
  2. Open App Center and then click .
    A search box appears.
  3. Type "Helpdesk" and then press ENTER.
    Helpdesk appears in the search results.
  4. Click Update.
    A confirmation message appears.
    Note: The Update button is not available if your Helpdesk is already up to date.
  5. Click OK.
    The application is updated.

  

Attachment

Acknowledgements: Anonymous

Revision History:
V1.0 (September 07, 2024) - Published

Choose specification

      Show more Less

      Choose Your Country or Region

      back to top