CVE Field Guide
About Us
CVE-2026-12058
PUBLISHED
Assigner:
Vivo
Reserved:
12.06.2026
Published:
12.06.2026
Updated:
12.06.2026
The connection confirmation pop-up of a specific feature in the PcSuite can be bypassed.
Metrics
CVSS 4.0
CVSS Vector:
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
CVSS Score:
5.3
CVSS score
5.3
Exploitability Metrics
Vulnerable System Impact Metrics
Subsequent System Impact Metrics
Attack Vector
Adjacent
Confidentiality
None
Confidentiality
None
Attack Complexity
Low
Integrity
Low
Integrity
None
Attack Requirements
None
Availability
None
Availability
None
Privileges Required
None
User Interaction
None
CVSS 4.0
Product Status
Vendor
vivo
Product
PcSuite
Versions
Default:
unaffected
Version Versions below 6.2.0 is affected
References
https://www.vivo.com/en/support/security-advisory-detail?id=23
Problem Types
CWE-807 Reliance on untrusted inputs in a security decision
CWE
Impacts
CAPEC-153 Input Data Manipulation