CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-26339

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve remote code execution through the argument injection vulnerability, which exists in the document processing functionality.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.6%

CVSS Severity

CVSS v3 Score 9.8

References

https://connect.hyland.com/t5/alfresco-blog/security-update-cve-2026-26337-cve-2026-26338-cve-2026-26339/ba-p/496551
https://www.hyland.com/en/solutions/products/alfresco-platform
https://www.vulncheck.com/advisories/hyland-alfresco-transformation-service-argument-injection-rce

Products affected by CVE-2026-26339

Hyland » Alfresco Transform Core » Version: Any

cpe:2.3:a:hyland:alfresco_transform_core:*
Hyland » Alfresco Transform Service » Version: Any

cpe:2.3:a:hyland:alfresco_transform_service:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-26339

Products

Pricing

Contact Us