PatchSiren cyber security CVE debrief
CVE-2026-47905 Adobe CVE debrief
CVE-2026-47905 is an Uncontrolled Resource Consumption vulnerability affecting CAI Content Credentials versions [email protected], c2pa-v0.80.1, and earlier. An attacker could exploit this vulnerability to exhaust system resources, resulting in an application denial-of-service condition. This issue does not require user interaction to be exploited. The vulnerability has a CVSS score of 6.2 and a severity rating of MEDIUM.
- Vendor
- Adobe
- Product
- CAI Content Credentials
- CVSS
- MEDIUM 6.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-10
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-10
Who should care
Users of CAI Content Credentials versions [email protected], c2pa-v0.80.1, and earlier should apply patches or mitigations to prevent exploitation of this vulnerability.
Technical summary
The vulnerability is caused by an Uncontrolled Resource Consumption issue in CAI Content Credentials. This could allow an attacker to consume excessive system resources, leading to a denial-of-service condition for the application.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates provided by the vendor to affected versions of CAI Content Credentials.
- Restrict access to vulnerable systems or services to minimize potential exposure.
- Monitor system resources and application performance for signs of exploitation.
Evidence notes
The CVE was published on 2026-06-09T22:16:25.517Z and last modified on 2026-06-10T18:35:49.083Z. The vendor is identified as Unknown Vendor, with a possible link to Adobe.
Official resources
-
CVE-2026-47905 CVE record
CVE.org
-
CVE-2026-47905 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-47905 was published on 2026-06-09T22:16:25.517Z and last modified on 2026-06-10T18:35:49.083Z.