Uncontrolled Resource Consumption Vulnerability in CAI Content Credentials by Adobe
CVE-2026-34713

7.5HIGH

Key Information:

Vendor

Adobe

Vendor
CVE Published:
9 June 2026

What is CVE-2026-34713?

CAI Content Credentials, specifically in versions c2pa-web@0.7.1 and c2pa-v0.80.1 as well as prior releases, are susceptible to an Uncontrolled Resource Consumption vulnerability. This flaw allows an attacker to exploit the application and exhaust system resources, potentially leading to a denial-of-service scenario. Importantly, the exploitation does not require any user interaction, making it a significant concern for system stability and availability.

Affected Version(s)

CAI Content Credentials 0

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.