Alfresco Transform Core

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-26339 CRITICAL Act Now

RCE via argument injection in Hyland Alfresco Transformation Service. Unauthenticated attackers can execute commands through document transformation.

RCE Alfresco Transform Core Alfresco Transform Service
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2026-26338 CRITICAL Act Now

SSRF in Hyland Alfresco Transformation Service via document processing.

SSRF Alfresco Transform Core Alfresco Transform Service
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-26337 HIGH This Week

Alfresco Transform Service contains a vulnerability that allows attackers to achieve both arbitrary file read and server-side request forgery through the abs (CVSS 8.2).

SSRF Path Traversal Alfresco Transform Core Alfresco Transform Service
NVD
CVSS 3.1
8.2
EPSS
0.1%
CVE-2026-26339
EPSS 0% CVSS 9.8
CRITICAL Act Now

RCE via argument injection in Hyland Alfresco Transformation Service. Unauthenticated attackers can execute commands through document transformation.

RCE Alfresco Transform Core Alfresco Transform Service
NVD
CVE-2026-26338
EPSS 0% CVSS 9.8
CRITICAL Act Now

SSRF in Hyland Alfresco Transformation Service via document processing.

SSRF Alfresco Transform Core Alfresco Transform Service
NVD
CVE-2026-26337
EPSS 0% CVSS 8.2
HIGH This Week

Alfresco Transform Service contains a vulnerability that allows attackers to achieve both arbitrary file read and server-side request forgery through the abs (CVSS 8.2).

SSRF Path Traversal Alfresco Transform Core +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy