CRITICAL
DrangSoft
CVE published 2026-03-17
CVE-2026-4312
A critical vulnerability was discovered in the GCB/FCB Audit Software developed by Dragonsoft. The vulnerability, tracked as CVE-2026-4312, has a CVSS score of 9.3 and is classified as a Missing Authentication vulnerability. This vulnerability allows unauthenticated remote attackers to directly access certain APIs to create a new administrative account.