[LOW] Snipe-IT's S3 signature image retrieval lacks authorization before temporary URL

PKSA-k6ph-vwdz-djyn CVE-2026-55542 GHSA-6mmj-jhqj-6c6q

Affected package: snipe/snipe-it

Affected version: <=8.5.0

Reported by:
GitHub