PatchSiren cyber security CVE debrief
CVE-2026-47904 Adobe CVE debrief
CVE-2026-47904 is a MEDIUM severity vulnerability in CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier. This Uncontrolled Resource Consumption vulnerability allows an attacker to exhaust system resources, resulting in an application denial-of-service condition. Exploitation of this issue does not require user interaction. The vulnerability has a CVSS score of 6.2 and was published on [cvePublishedAt](https://www.cve.org/CVERecord?id=CVE-2026-47904).
- Vendor
- Adobe
- Product
- CAI Content Credentials
- CVSS
- MEDIUM 6.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-10
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-10
Who should care
Users of CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier should apply patches or mitigations as available.
Technical summary
The vulnerability is caused by an Uncontrolled Resource Consumption issue in CAI Content Credentials. This allows an attacker to consume excessive system resources, leading to a denial-of-service condition.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates for CAI Content Credentials as available.
- Restrict access to vulnerable systems or services.
- Monitor system resources for unusual consumption patterns.
Evidence notes
The CVE record [cve-org] and NVD detail [nvd] provide official information about CVE-2026-47904. Additional information is available from [ref-4].
Official resources
-
CVE-2026-47904 CVE record
CVE.org
-
CVE-2026-47904 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-47904 was published on 2026-06-09T22:16:25.403Z and modified on 2026-06-10T18:35:49.083Z.