CVE-2026-34711
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk34th percentile - higher than 34% of all known CVEs
Summary
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition.
Risk Assessment
Exploitation of this issue may lead to application downtime, affecting service availability for users. The attack does not require user interaction.
Recommendation
It is recommended to update to the latest version of CAI Content Credentials to mitigate this vulnerability. Monitoring systems for unauthorized access attempts is also advisable.
Original NVD description (English source)
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require user interaction.

