CVE-2026-23703

Summary

The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may execute arbitrary code with SYSTEM privilege.

Affected Software

VendorProductVersion RangeStatus
Digital Arts Inc.FinalCode Ver.5 seriesprior to 5.43R01affected
Digital Arts Inc.FinalCode Ver.6 seriesprior to 6.51R01affected

Weaknesses

  • CWE-276: Incorrect default permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References