{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-26416", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-06T09:51:06.653Z", "dateReserved": "2026-02-16T00:00:00.000Z", "datePublished": "2026-03-05T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-05T17:00:47.036Z"}, "descriptions": [{"lang": "en", "value": "An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/aksalsalimi/cognix-recon-client-security-advisories"}, {"url": "https://www.tcs.com/what-we-do/services/cognitive-business-operations/solution/cognix-platform-business-agility-enhanced-cx"}, {"url": "https://github.com/aksalsalimi/CVE-2026-26416"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-269", "lang": "en", "description": "CWE-269 Improper Privilege Management"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-06T09:48:22.518777Z", "id": "CVE-2026-26416", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-06T09:51:06.653Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-26416", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-06T09:48:22.518777Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-06T09:50:52.679Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://github.com/aksalsalimi/cognix-recon-client-security-advisories"}, {"url": "https://www.tcs.com/what-we-do/services/cognitive-business-operations/solution/cognix-platform-business-agility-enhanced-cx"}, {"url": "https://github.com/aksalsalimi/CVE-2026-26416"}], "descriptions": [{"lang": "en", "value": "An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-05T17:00:47.036Z"}}}, "cveMetadata": {"cveId": "CVE-2026-26416", "state": "PUBLISHED", "dateUpdated": "2026-03-06T09:51:06.653Z", "dateReserved": "2026-02-16T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-05T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tcs:cognix_platform:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "B3E24A7D-397D-4E75-A986-D497380E092C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests."}, {"lang": "es", "value": "Una vulnerabilidad de omisi\u00f3n de autorizaci\u00f3n en Tata Consultancy Services Cognix Recon Client v3.0 permite a usuarios autenticados escalar privilegios a trav\u00e9s de los l\u00edmites de roles mediante solicitudes manipuladas."}], "id": "CVE-2026-26416", "lastModified": "2026-03-10T19:00:58.777", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-05T19:16:04.560", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/aksalsalimi/CVE-2026-26416"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/aksalsalimi/cognix-recon-client-security-advisories"}, {"source": "cve@mitre.org", "tags": ["Product"], "url": "https://www.tcs.com/what-we-do/services/cognitive-business-operations/solution/cognix-platform-business-agility-enhanced-cx"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "3.0"}}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "cognix_recon_client", "vendor": "tcs"}], "analysis": {"en": {"generated_at": "2026-04-17T12:59:30.467245+00:00", "value": {"mitigation_remediation": ["Upgrade Cognix Recon Client to the latest release that includes the authorization bypass fix, if a patched version is available from TCS", "Restrict access to the endpoints that handle role assignments using network segmentation or firewall rules to limit exposure to malicious crafted requests", "Enforce strict role\u2011based access control and the principle of least privilege; regularly audit role assignments to ensure no unintended privilege escalation paths exist"], "summary": {"action": "Apply Patch", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "The affected product is Tata Consultancy Services Cognix Recon Client version 3.0. No other vendors or product versions are listed as affected.", "description_and_impact": "The vulnerability is an authorization bypass that allows users who have valid authentication to elevate their privileges across defined role boundaries. It stems from improper privilege management, enabling an attacker to gain higher-level permissions than intended. The impact is that an attacker, once authenticated, can potentially control sensitive data or perform administrative actions, compromising both confidentiality and integrity of the system.", "risk_and_exploitability": "The vulnerability received a high severity CVSS score of 8.8, indicating a serious risk. The EPSS score is less than 1%, suggesting that exploitation in the wild is currently unlikely. It is not listed in the CISA Known Exploited Vulnerabilities catalog. The attack requires authenticated access and the ability to craft specific requests to trigger the privilege escalation. The typical attack vector is an authenticated user sending specially crafted API requests within the Cognix Recon Client. Based on the description, the likely attack vector is an authenticated user sending such requests."}}}}, "created": "2026-03-06T15:18:09.418235+00:00", "title": "Authorization bypass in TCS Cognix Recon Client enabling privilege escalation", "updated": "2026-04-17T13:00:12.033447+00:00", "vendors": ["tcs", "tcs$PRODUCT$cognix_recon_client"]}