Input Validation Flaw in CAI Content Credentials by Adobe
CVE-2026-34712

7.5HIGH

Key Information:

Vendor

Adobe

Vendor
CVE Published:
9 June 2026

What is CVE-2026-34712?

A vulnerability exists in CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier, which is caused by improper input validation. This flaw allows an attacker to exploit the system without requiring any user interaction, potentially causing the application to crash and resulting in a denial-of-service condition.

Affected Version(s)

CAI Content Credentials 0

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.