Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-26339 | 1 Hyland | 2 Alfresco Transform Core, Alfresco Transform Service | 2026-03-02 | N/A | 9.8 CRITICAL |
| Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve remote code execution through the argument injection vulnerability, which exists in the document processing functionality. | |||||
| CVE-2026-26337 | 1 Hyland | 2 Alfresco Transform Core, Alfresco Transform Service | 2026-03-02 | N/A | 8.2 HIGH |
| Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through the absolute path traversal. | |||||
| CVE-2026-26338 | 1 Hyland | 2 Alfresco Transform Core, Alfresco Transform Service | 2026-03-02 | N/A | 9.8 CRITICAL |
| Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve server-side request forgery (SSRF) through the document processing functionality. | |||||