This page aggregates publicly disclosed CVE and security risk information related to tcs, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-26418 | Missing authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 allows remote attackers to access application functionality without restriction via the network. | [email protected] | 7.5 | 0.06% | 2026-03-05 | 2026-03-10 |
| CVE-2026-26417 | A broken access control vulnerability in the password reset functionality of Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to reset passwords of arbitrary user accounts via crafted requests. | [email protected] | 8.1 | 0.03% | 2026-03-05 | 2026-03-10 |
| CVE-2026-26416 | An authorization bypass vulnerability in Tata Consultancy Services Cognix Recon Client v3.0 allows authenticated users to escalate privileges across role boundaries via crafted requests. | [email protected] | 8.8 | 0.05% | 2026-03-05 | 2026-03-10 |