PatchSiren cyber security CVE debrief

CVE-2026-12058 vivo CVE debrief

CVE-2026-12058 is a medium-severity vulnerability (CVSS Score: 5.3) that affects an unspecified feature in PcSuite. The vulnerability allows an attacker to bypass the connection confirmation pop-up. The CVE was published on 2026-06-12T09:16:29.527Z and last modified on 2026-06-12T16:06:47.720Z.

Vendor: vivo
Product: PcSuite
CVSS: MEDIUM 5.3
CISA KEV: Not listed in stored evidence
Original CVE published: 2026-06-12
Original CVE updated: 2026-06-12
Advisory published: 2026-06-12
Advisory updated: 2026-06-12

Who should care

Users of PcSuite, particularly those using the affected feature, should be aware of this vulnerability. Vivo has been identified as a potential vendor related to this issue [ref-4].

Technical summary

The vulnerability has been assigned a CVSS score of 5.3, indicating a medium severity. The CVSS vector is CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. The weakness associated with this vulnerability is CWE-807.

Defensive priority

This vulnerability is considered medium severity. Users should review their usage of the affected PcSuite feature and ensure they are using the latest version available.

Recommended defensive actions

Review and apply any available security patches for PcSuite.
Use secure communication protocols when interacting with PcSuite features.
Monitor PcSuite updates and advisories for further information.

Evidence notes

The CVE record [cve-org] and NVD detail [nvd] provide official information about this vulnerability. Additional information can be found in the source reference [ref-4] from Vivo's security advisory site.

Official resources

The information provided is based on data from official sources and is intended for informational purposes only.