PatchSiren cyber security CVE debrief
CVE-2026-47903 Adobe CVE debrief
CVE-2026-47903 is an Improper Input Validation vulnerability in CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier. This vulnerability allows an attacker to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require user interaction. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 6.2, with a severity rating of MEDIUM.
- Vendor
- Adobe
- Product
- CAI Content Credentials
- CVSS
- MEDIUM 6.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-10
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-10
Who should care
Users of CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier should apply patches or updates to mitigate this vulnerability.
Technical summary
The vulnerability is caused by improper input validation in CAI Content Credentials. An attacker can exploit this vulnerability to crash the application, leading to a denial-of-service condition.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates for CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier.
- Refer to [ref-4](https://helpx.adobe.com/security/products/content-authenticity-sdk/apsb26-61.html) for more information.
Evidence notes
The vendor for this vulnerability is listed as Unknown Vendor, but evidence suggests the vendor may be Adobe.
Official resources
-
CVE-2026-47903 CVE record
CVE.org
-
CVE-2026-47903 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-47903 was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-47903) and last modified on [cveModifiedAt](https://nvd.nist.gov/vuln/detail/CVE-2026-47903).