Helpsystems Helpsystems

  1. Vendors
  2. Helpsystems

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Helpsystems product.

RSS Feeds for Helpsystems security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Helpsystems products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Helpsystems Sorted by Most Security Vulnerabilities since 2018

Helpsystems Cobalt Strike4 vulnerabilities

Helpsystems Goanywhere Managed File Transfer1 vulnerability

Helpsystems Titus Data Classification1 vulnerability

By the Year

In 2026 there have been 0 vulnerabilities in Helpsystems. Helpsystems did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2026 0 0.00
2025 0 0.00
2024 0 0.00
2023 1 9.80
2022 4 6.40
2021 1 7.50

It may take a day or so for new Helpsystems vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Helpsystems Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2022-42948 Mar 24, 2023
Cobalt Strike 4.7.1 Swing RCE via Unescaped HTML Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI.
Cobalt Strike
CVE-2022-39197 Sep 22, 2022
HelpSystems Cobalt Strike 4.7 XSS via Malformed Username Field in Teamserver An XSS (Cross Site Scripting) vulnerability was found in HelpSystems Cobalt Strike through 4.7 that allowed a remote attacker to execute HTML on the Cobalt Strike teamserver. To exploit the vulnerability, one must first inspect a Cobalt Strike payload, and then modify the username field in the payload (or create a new payload with the extracted information and then modify that username field to be malformed).
Cobalt Strike
CVE-2021-46830 Jul 27, 2022
GoAnywhere MFT Path Traversal via Self-Register (<6.8.3) Web Client A path traversal vulnerability exists within GoAnywhere MFT before 6.8.3 that utilize self-registration for the GoAnywhere Web Client. This vulnerability could potentially allow an external user who self-registers with a specific username and/or profile information to gain access to files at a higher directory level than intended.
Goanywhere Managed File Transfer
CVE-2021-43708 Apr 21, 2022
The Labeling tool in Titus Classification Suite 18.8.1910.140 The Labeling tool in Titus Classification Suite 18.8.1910.140 allows users to avoid the generation of a classification label by using Excel's safe mode.
Titus Data Classification
CVE-2022-23317 Feb 15, 2022
CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and attackers CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and attackers can obtain relevant information by specifying the URL.
Cobalt Strike
CVE-2021-36798 Aug 09, 2021
A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3 A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3. It allows remote attackers to crash the C2 server thread and block beacons' communication with it.
Cobalt Strike
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.