What is CVE-2026-34072?

CVE-2026-34072 is a high-severity vulnerability in Fccview Cronmaster, classified under Improper Authentication. CVSS score: 8.3/10. Published 2026-04-01.

How severe is CVE-2026-34072?

High severity. CVSS v3 base score is 8.3 out of 10.

Auth bypass in Fccview Cronmaster

CVE-2026-34072

Cr*nMaster (cronmaster) is a Cronjob management UI with human readable syntax, live logging and log history for cronjobs. Prior to version 2.2.0, an authentication bypass in middleware allows unauthenticated requests with an invalid sessio…

Vulnerability class: Broken Authentication

EPSS: 0.003 (54.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.3 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L.

Affected products

Fccview Cronmaster — versions < 2.2.0

Weakness classification (CWE)

References

security-advisories@github.com (x_refsource_CONFIRM, Vendor Advisory)
security-advisories@github.com (x_refsource_MISC, Release Notes)

Frequently asked questions

What is CVE-2026-34072?: CVE-2026-34072 is a high-severity vulnerability in Fccview Cronmaster, classified under Improper Authentication. CVSS score: 8.3/10. Published 2026-04-01.
How severe is CVE-2026-34072?: High severity. CVSS v3 base score is 8.3 out of 10.