CVE Catalog

CVE-2026-48887

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

14th percentile - higher than 14% of all known CVEs

Summary

JS Help Desk versions up to 3.0.9 contain a vulnerability in access control that allows unauthorized access to resources.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive data, potentially leading to a loss of confidentiality.

Recommendation

It is recommended to upgrade to the latest version of JS Help Desk to mitigate this security vulnerability.

Original NVD description (English source)

Unauthenticated Broken Access Control in JS Help Desk <= 3.0.9 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS