PT-2026-21242 · Key Systems · Global Facilities Management
Chndlrx
·
Publicado
2026-02-20
·
Atualizado
2026-02-26
·
CVE-2026-26721
CVSS v3.1
7.1
Alta
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Key Systems Inc Global Facilities Management Software version 20230721a
Description
A flaw exists that allows a remote attacker to obtain sensitive information. The issue is related to the
sid query parameter. The API endpoint is affected. The vulnerable parameter is sid.Recommendations
Apply any available updates to address the issue. As a temporary workaround, restrict access to the
sid query parameter until a patch is available.Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Global Facilities Management