Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/02/20 7:39 p.m.8 views

CVE-2026-26337

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through the absolute path traversal...

8.8CVSS5.7AI score0.00358EPSS
Exploits0References1
NVD
NVD
added 2026/02/19 6:24 p.m.5 views

CVE-2026-26337

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through the absolute path traversal...

8.8CVSS0.00358EPSS
Exploits0References3
NVD
NVD
added 2026/02/19 6:24 p.m.7 views

CVE-2026-26338

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve server-side request forgery SSRF through the document processing functionality...

9.8CVSS0.0036EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/19 5:4 p.m.7 views

CVE-2026-26339 Hyland Alfresco Transformation Service Argument Injection RCE

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve remote code execution through the argument injection vulnerability, which exists in the document processing functionality...

9.8CVSS6.3AI score0.00544EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/19 5:4 p.m.22 views

CVE-2026-26339 Hyland Alfresco Transformation Service Argument Injection RCE

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve remote code execution through the argument injection vulnerability, which exists in the document processing functionality...

9.8CVSS0.00544EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/19 5:1 p.m.5 views

CVE-2026-26337 Hyland Alfresco Transformation Service Absolute Path Traversal Arbitrary File Read and SSRF

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through the absolute path traversal...

8.8CVSS5.6AI score0.00544EPSS
Exploits0References3
CVE
CVE
added 2026/02/19 5:1 p.m.24 views

CVE-2026-26337

Hyland Alfresco Transformation Service is affected by CVE-2026-26337. The flaw enables unauthenticated attackers to perform absolute path traversal, resulting in arbitrary file reads and server-side request forgery (SSRF). Reported CVSS-3.1 base score 8.2 (HIGH) with NETWORK attack vector and no ...

8.8CVSS5.7AI score0.00544EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.6 views

PT-2026-20877

Name of the Vulnerable Software and Affected Versions Hyland Alfresco Transformation Service affected versions not specified Description An unauthenticated attacker can perform server-side request forgery SSRF via the document processing functionality. SSRF occurs when an application makes reques...

9.8CVSS5.2AI score0.00544EPSS
Exploits0References7
Rows per page
Query Builder