CVE-2026-23703

HIGH 7.8

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may execute arbitrary code with SYSTEM privilege.

Vendor	digital arts inc.
Product	finalcode ver.5 series
Published	Feb 26, 2026
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for digital arts inc. finalcode ver.5 series

Be the first to know when new high vulnerabilities affecting digital arts inc. finalcode ver.5 series are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Versions

Digital Arts Inc. / FinalCode Ver.5 series

prior to 5.43R01

Digital Arts Inc. / FinalCode Ver.6 series

prior to 6.51R01

References

NVD ↗ CVE.org ↗ EPSS Data ↗

daj.jp: https://www.daj.jp/shared/php/downloadset/c/parts.php?page=dl&filename=information_20260226_01.pdf jvn.jp: https://jvn.jp/en/jp/JVN48498976/