PT-2026-25875 · Drangsoft · Drangsoft Gcb/Fcb Audit
Cyku Hong
·
Published
2026-03-17
·
Updated
2026-03-17
·
CVE-2026-4312
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
DrangSoft GCB/FCB Audit Software (affected versions not specified)
Description
The software contains a missing authentication issue, allowing unauthenticated remote attackers to access certain APIs. This access enables the creation of new administrative accounts. The issue concerns the ability to bypass access controls and create administrative accounts without proper authentication.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Drangsoft Gcb/Fcb Audit