Lucene search
K

262 matches found

NVD
NVD
added 2026/03/05 7:16 p.m.8 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

8.8CVSS0.00384EPSS
Exploits0References3
NVD
NVD
added 2026/03/05 7:16 p.m.8 views

CVE-2026-26418

Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to access application functionality without restriction via the network...

7.5CVSS0.00411EPSS
Exploits0References3
OSV
OSV
added 2026/03/05 7:16 p.m.5 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

8.8CVSS5.8AI score0.00384EPSS
Exploits0References3
NVD
NVD
added 2026/03/05 7:16 p.m.21 views

CVE-2026-26417

A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests...

8.1CVSS0.00274EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.8 views

Tata Consultancy Services Cognix Recon Client 安全漏洞

Tata Consultancy Services Cognix Recon Client is a financial reconciliation software developed by Tata Consultancy Services in India. Version 3.0 of Tata Consultancy Services Cognix Recon Client contains a security vulnerability. This vulnerability stems from an authorization bypass issue, which...

8.8CVSS5.8AI score0.00384EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/05 12:0 a.m.27 views

CVE-2026-26418

Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to access application functionality without restriction via the network...

0.00411EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.4 views

PT-2026-23478

Name of the Vulnerable Software and Affected Versions Tata Consultancy Services Cognix Recon Client version 3.0 Description A lack of proper authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 enables remote attackers to access application...

7.5CVSS5.8AI score0.00411EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.10 views

PT-2026-23476

Name of the Vulnerable Software and Affected Versions Tata Consultancy Services Cognix Recon Client version 3.0 Description An authorization bypass exists in Tata Consultancy Services Cognix Recon Client version 3.0. Authenticated users can escalate privileges across role boundaries by sending...

8.8CVSS5.8AI score0.00384EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.8 views

PT-2026-23477

Name of the Vulnerable Software and Affected Versions Tata Consultancy Services Cognix Recon Client version 3.0 Description A broken access control issue exists in the password reset functionality. Authenticated users can reset passwords for any user account by sending specially crafted requests...

8.1CVSS5.8AI score0.00274EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/03/05 12:0 a.m.4 views

CVE-2026-26417

A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests...

5.9AI score0.00274EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/05 12:0 a.m.4 views

CVE-2026-26418

Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to access application functionality without restriction via the network...

5.8AI score0.00411EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/05 12:0 a.m.27 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

0.00384EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/05 12:0 a.m.3 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

5.8AI score0.00384EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.10 views

Tata Consultancy Services Cognix Recon Client 安全漏洞

Tata Consultancy Services Cognix Recon Client is a financial reconciliation software developed by Tata Consultancy Services in India. Version 3.0 of Tata Consultancy Services Cognix Recon Client contains a security vulnerability. This vulnerability stems from an access control flaw in the passwor...

8.1CVSS5.8AI score0.00274EPSS
Exploits0References2
CVE
CVE
added 2026/03/05 12:0 a.m.12 views

CVE-2026-26416

CVE-2026-26416 affects Tata Consultancy Services Cognix Recon Client v3.0. An authorization bypass allows authenticated users to escalate privileges across role boundaries via crafted requests. CVSSv3.1 base score 8.8 (HIGH) with network attack vector, low attack complexity, and privileges requir...

8.8CVSS5.9AI score0.00384EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/05 12:0 a.m.6 views

CVE-2026-26416

An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests...

5.9AI score0.00384EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/05 12:0 a.m.6 views

CVE-2026-26418

Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to access application functionality without restriction via the network...

6AI score0.00411EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/05 12:0 a.m.2 views

CVE-2026-26417

A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests...

6AI score0.00274EPSS
Exploits0References3
CVE
CVE
added 2026/03/05 12:0 a.m.18 views

CVE-2026-26417

CVE-2026-26417 affects Tata Consultancy Services Cognix Recon Client v3.0. Affected component: password reset functionality in Cognix Recon Client. Root cause described as broken access control allowing authenticated users to reset passwords for arbitrary user accounts via crafted requests. CVSSv...

8.1CVSS6AI score0.00274EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/05 12:0 a.m.30 views

CVE-2026-26417

A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests...

0.00274EPSS
Exploits0References2
Rows per page
Query Builder