PT-2026-23477 · Tata Consultancy Services · Cognix Recon Client
Aksalsalimi
·
Published
2026-03-05
·
Updated
2026-03-08
·
CVE-2026-26417
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Tata Consultancy Services Cognix Recon Client version 3.0
Description
A broken access control issue exists in the password reset functionality. Authenticated users can reset passwords for any user account by sending specially crafted requests.
Recommendations
Apply updates to address the access control flaw in the password reset functionality.
Exploit
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cognix Recon Client