CVE-2026-36035 PUBLISHED

Assigner: mitre
Reserved: 06.04.2026 Published: 14.07.2026 Updated: 15.07.2026

Incorrect access control in the /api/License/deactivateOffline endpoint of CAXPerts UniversalPlantViewer WebServices Server v2.7.6 allows authenticated attackers with low-level privileges to cause a Denial of Service (DoS) via removing the license from the webserver.

Product Status

Vendor n/a
Product n/a
Versions
  • Version n/a is affected

References

Problem Types

  • n/a text