Home / Vulnerability Intelligence / CVE-2026-26416

CVE-2026-26416 - Vulnerability Analysis

N/a

Last Updated: March 5, 2026

Tata Consultancy Services Cognix Recon Client - Authorization Bypass

Published: March 5, 2026Updated: March 5, 2026PoC Available

Overview

Tata Consultancy Services Cognix Recon Client v3.0 contains an authorization bypass caused by crafted requests, letting authenticated users escalate privileges across role boundaries.

Severity & Score

Severity: N/a

Impact

Authenticated users can escalate privileges, potentially gaining unauthorized access to restricted functions or data.

Mitigation

Update to the latest version.

References

https://github.com/aksalsalimi/CVE-2026-26416
https://github.com/aksalsalimi/cognix-recon-client-security-advisories
https://www.tcs.com/what-we-do/services/cognitive-business-operations/solution/cognix-platform-business-agility-enhanced-cx

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-26416
Severity: N/a
Type: broken_access_control
Status: unconfirmed

CVSS Metrics

N/A