{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-26417", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-06T09:54:32.474Z", "dateReserved": "2026-02-16T00:00:00.000Z", "datePublished": "2026-03-05T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-05T16:20:46.406Z"}, "descriptions": [{"lang": "en", "value": "A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/aksalsalimi/cognix-recon-client-security-advisories"}, {"url": "https://github.com/aksalsalimi/CVE-2026-26417"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-284", "lang": "en", "description": "CWE-284 Improper Access Control"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-06T09:53:19.371919Z", "id": "CVE-2026-26417", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-06T09:54:32.474Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-26417", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-06T09:53:19.371919Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284 Improper Access Control"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-06T09:54:26.500Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://github.com/aksalsalimi/cognix-recon-client-security-advisories"}, {"url": "https://github.com/aksalsalimi/CVE-2026-26417"}], "descriptions": [{"lang": "en", "value": "A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-05T16:20:46.406Z"}}}, "cveMetadata": {"cveId": "CVE-2026-26417", "state": "PUBLISHED", "dateUpdated": "2026-03-06T09:54:32.474Z", "dateReserved": "2026-02-16T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-05T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tcs:cognix_platform:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "B3E24A7D-397D-4E75-A986-D497380E092C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests."}, {"lang": "es", "value": "Una vulnerabilidad de control de acceso roto en la funcionalidad de restablecimiento de contrase\u00f1a de Tata Consultancy Services Cognix Recon Cliente v3.0 permite a usuarios autenticados restablecer contrase\u00f1as de cuentas de usuario arbitrarias a trav\u00e9s de solicitudes manipuladas."}], "id": "CVE-2026-26417", "lastModified": "2026-03-10T18:49:41.163", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.2, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-05T19:16:04.680", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/aksalsalimi/CVE-2026-26417"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/aksalsalimi/cognix-recon-client-security-advisories"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "3.0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "cognix_recon_client", "vendor": "tcs"}], "analysis": {"en": {"generated_at": "2026-04-17T12:59:10.174454+00:00", "value": {"mitigation_remediation": ["Apply the vendor\u2019s security patch or upgrade to a version that restricts password reset privileges to the account owner.", "Restrict password reset functionality to authenticated administrators or implement a confirmation workflow that requires ownership verification before resetting a password.", "Enable logging and monitoring of password reset requests, and investigate any unauthorized or anomalous reset attempts."], "summary": {"action": "Immediate Patch", "impact": "Unauthorized Password Reset via Broken Access Control"}, "threat_synthesis": {"affected_systems": "The affected system is Tata Consultancy Services\u2019 Cognix Recon Client, specifically version 3.0. Users of this version are susceptible to abuse of the password reset routine, regardless of the user\u2019s role or permissions within the application.", "description_and_impact": "A broken access control flaw in the password reset feature of the Cognix Recon Client permits any authenticated user to craft requests that reset the passwords of arbitrary accounts. This weakness, identified as CWE-284, enables an attacker to forcibly take over other users\u2019 accounts, potentially accessing sensitive data or persisting malicious control. As the vulnerability allows the attacker to avoid legitimate authorization steps, it effectively negates the integrity of user credentials and can serve as a vector for broader system compromise.", "risk_and_exploitability": "The CVSS score of 8.1 classifies this flaw as high severity, signifying substantial risk to confidentiality, integrity, and availability. The EPSS score of less than 1% indicates that, overall, exploit attempts are expected to be infrequent at this time, and the vulnerability is not yet listed in the CISA KEV catalog. Nevertheless, the exploit path requires only an authenticated session and the ability to send crafted requests, making it relatively straightforward for internal users or attackers who have compromised credentials. The attack vector is likely intra\u2011network or through compromised user accounts, exploiting the lack of role or ownership checks during the reset process."}}}}, "created": "2026-03-06T15:18:08.586602+00:00", "updated": "2026-04-17T13:00:12.032805+00:00", "vendors": ["tcs", "tcs$PRODUCT$cognix_recon_client"]}