An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an unauthenticated attacker to brute-force the password reset PINs of administrative users.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.