242 matches found
CVE-2026-48298
CAI Content Credentials is affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not...
CVE-2026-48353
CVE-2026-48353 affects CAI Content Credentials. The issue is an Improper Input Validation (CWE-20) that could enable an attacker to read arbitrary files on the filesystem outside the intended scope. Exploitation requires user interaction, as a victim must open a malicious file. The CVSS v3.1 base...
CVE-2026-48353
CAI Content Credentials is affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issue requires user...
PT-2026-58832
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description An issue involving insufficiently protected credentials could lead to the disclosure of sensitive information. An attacker could exploit this to gain unauthorized read access...
PT-2026-58834
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description An Integer Underflow Wrap or Wraparound issue exists, which occurs when an arithmetic operation results in a value smaller than the minimum representable value for the data...
PT-2026-58844
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description An integer overflow or wraparound occurs, which can be exploited by an attacker to crash the application. This leads to a denial-of-service condition and does not require user...
PT-2026-58830
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description An Untrusted Search Path issue exists that could allow arbitrary code execution within the context of the current user. This occurs when an application searches for a file or...
PT-2026-58836
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description Improper input validation allows an attacker to bypass security features and obtain unauthorized write access. This issue can be exploited without any user interaction...
PT-2026-58831
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description A Server-Side Request Forgery SSRF issue exists that could lead to arbitrary code execution within the context of the current user. This flaw allows an attacker to inject...
PT-2026-58841
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description Improper input validation allows an attacker to crash the application, resulting in a denial-of-service condition. This issue can be exploited without any user interaction...
PT-2026-58845
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description An uncontrolled resource consumption issue exists that could lead to an application denial-of-service. An attacker can exhaust system resources to cause the application to...
PT-2026-58833
Name of the Vulnerable Software and Affected Versions CAI Content Credentials affected versions not specified Description An Integer Underflow Wrap or Wraparound issue exists, which occurs when an arithmetic operation results in a value smaller than the minimum representable value for the data...
CVE-2026-47902
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust system resources, resulting in an application denial-of-service condition. Exploitation of this iss...
CVE-2026-47905
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust system resources, resulting in an application denial-of-service condition. Exploitation of this iss...
CVE-2026-47904
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust system resources, resulting in an application denial-of-service condition. Exploitation of this iss...
CVE-2026-47903
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Improper Input Validation vulnerability. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require user...
CVE-2026-34713
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust system resources, resulting in an application denial-of-service condition. Exploitation of this iss...
CVE-2026-34657
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in an arbitrary file system write. An attacker could leverage this vulnerability to write to...
CVE-2026-34712
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Improper Input Validation vulnerability. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require user...
CVE-2026-34711
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require...