GHSA-467v-w526-45hgMediumCVSS 6.5

Incorrect access control in the /api/License/deactivateOffline endpoint of CAXPerts...

Published
July 15, 2026
Last Modified
July 15, 2026

🔗 CVE IDs covered (1)

📋 Description

Incorrect access control in the /api/License/deactivateOffline endpoint of CAXPerts UniversalPlantViewer WebServices Server v2.7.6 allows authenticated attackers with low-level privileges to cause a Denial of Service (DoS) via removing the license from the webserver.

🔗 References (5)