安全ID : QSA-25-05
Vulnerability in Helpdesk
发布日期 : March 8, 2025
通用漏洞披露 : CVE-2024-50394
受影响产品: Helpdesk 3.3.x
严重程度
Important
状态
已解决
Summary
An improper certificate validation vulnerability has been reported to affect Helpdesk. If exploited, the vulnerability could allow remote attackers to compromise the security of the system.
This vulnerability does not affect systems where Helpdesk is disabled.
We have already fixed the vulnerability in the following version:
| Affected Product | Fixed Version |
| Helpdesk 3.3.x | Helpdesk 3.3.3 and later |
Recommendation
To fix the vulnerability, we recommend updating Helpdesk to the latest version.
Updating Helpdesk
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "Helpdesk" and then press ENTER.
Helpdesk appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your Helpdesk is already up to date. - Click OK.
The application is updated.
附件
致谢: Corentin '@OnlyTheDuck' BAYET
修订历史:
V1.0 (March 8, 2025) - Published
