CNNVD-202601-2719 Information
CNNVD ID
CNNVD-202601-2719
Related CVE
- CNNVD Published: 2026-01-16
Description (Chinese)
ConnectWise PSA是美国ConnectWise公司的一种专业的服务自动化软件。 ConnectWise PSA 2026.1之前版本存在安全漏洞,该漏洞源于Time Entry Audit Trail中的Time Entry notes未应用输出编码,可能导致存储型脚本代码在用户浏览器中执行。
Description (English)
ConnectWise PSA is a professional service automation software for ConnectWise in the United States. There was a security loophole in the previous version of ConectWise PSA 2026.1, which resulted from the non-application of the output code for Time Entry Audio Notes in Time Entry Travel, which may result in storage script codes being executed in the user browser.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
ConnectWise
Published
2026-01-16
Last Modified
2026-02-24
References
https://www.connectwise.com/company/trust/security-bulletins/2026-01-15-psa-security-fix https://access.redhat.com/security/cve/cve-2026-0695
Patch
https://www.connectwise.com/software/psa
Share on: