Question 1

What is CVE-2026-44975 — CVE-2026-44975?

Accepted Answer

Frappe is a full-stack web application framework. Prior to versions 15.107.2 and 16.17.4, any authenticated user can reset onboarding for all users in the system. This issue has been patched in versions 15.107.2 and 16.17.4.

Question 2

What is the authoritative source for CVE-2026-44975?

Accepted Answer

CVE-2026-44975 (CVE-2026-44975) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

EPSS	0.28% probability of exploitation · percentile 19.3% · 2026-06-19T12:03:05Z
Last modified	2026-06-12

CVE-2026-44975CVE-2026-44975

Description

Scoring