Key Systems Global Facilities Management Software Privilege Escalation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.4

Key Systems Global Facilities Management Software Privilege Escalation Vulnerability

CVE-2026-26722

Summary

A security issue in Key Systems Global Facilities Management Software could let an attacker access sensitive areas of a building's management system by exploiting a weakness in the way users log in. This could potentially allow unauthorized access to sensitive areas or systems. To protect your facilities, update to the latest version of the software.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
keystorage	global_facilities_management_software	20230721a	–

Original title

An issue in Key Systems Inc Global Facilities Management Software v.20230721a allows a remote attacker to escalate privileges via PIN component of the login functionality.

Original description

An issue in Key Systems Inc Global Facilities Management Software v.20230721a allows a remote attacker to escalate privileges via PIN component of the login functionality.

nvd CVSS3.1 9.4

Vulnerability type

CWE-269 Improper Privilege Management

https://github.com/chndlrx/vulnerability-disclosures/tree/main/CVE-2026-26722 Exploit Third Party Advisory

Published: 20 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026