CVE-2026-42084 | OpenC3 cosmos up to 6.10.4/7.0.0-rc2 Password Change unverified password change (GHSA-wgx6-g857-jjf7)

A vulnerability identified as critical has been detected in OpenC3 cosmos up to 6.10.4/7.0.0-rc2. The impacted element is an unknown function of the component Password Change Handler. This manipulation causes unverified password change.

This vulnerability is tracked as CVE-2026-42084. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More