CVE-2026-4312: CWE-306 Missing authentication for critical function in DrangSoft CVE-2026-4312 is a critical security vulnerability identified in DrangSoft's GCB/FCB Audit Software, categorized under CWE-306 (Missing Authentication for Critical Function). The flaw allows unauthenticated remote attackers to directly invo

CRITICAL: DrangSoft GCB/FCB Audit Software flaw (CVE-2026-4312) allows unauthenticated admin account creation. No patch — limit access & monitor for abuse now. radar.offseq.com/threat/cve-2026-4312-cwe... #OffSeq #Vulnerability #AuditSoftware

SolarWinds fixes 8 critical bugs in access rights audit software SolarWinds has fixed eight critical vulnerabilities in its Access Rights Manager (ARM) software, six of which allowed attackers to gain remote code execution (RCE) on vulnerable devices.

SolarWinds fixes 8 critical bugs in access rights audit software
www.bleepingcomputer.com/news/securit...

#Infosec #Security #Cybersecurity #CeptBiro #SolarWinds #Fix #CriticalBugs #AccessRights #AuditSoftware