Free Edition No, Desktop Central is not vulnerable to CVE-2020-13943 vulnerability. Read the document fully for further details.
If a HTTP/2 client connecting to Apache Tomcat 8.5.0 to 8.5.57 exceeded the maximum number of concurrent streams for a connection, then it was possible that a subsequent request could contain the HTTP headers from a previous request. This results in users seeing unexpected responses.
CVE-2020-13943 will not affect Desktop Central as HTTP/2 requests are not used.
Although Desktop Central is not vulnerable to this CVE, we'll be upgrading to the latest Apache Tomcat version during our regular third-party components upgrade cycle.