Insufficiently Protected Credentials in CAI Content Credentials by Adobe
CVE-2026-48295

7.5HIGH

What is CVE-2026-48295?

CAI Content Credentials from Adobe is susceptible to a vulnerability that exposes sensitive information due to insufficient protection of credentials. Attackers can exploit this vulnerability to gain unauthorized read access without any user interaction, potentially leading to significant security risks for users and their data.

Affected Version(s)

Content Credentials Command-Line Tool 0

Content Credentials Command-Line Tool 0

Content Credentials JS SDK 0

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.