CVE-2026-34713
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk32th percentile - higher than 32% of all known CVEs
Summary
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust system resources, resulting in an application denial-of-service condition.
Risk Assessment
Exploitation of this issue could lead to application unavailability, impacting the organization's operational continuity. The attack does not require user interaction, increasing the risk.
Recommendation
It is recommended to upgrade to the latest version of CAI Content Credentials to mitigate the risk associated with this vulnerability. Monitoring system resource consumption may also help in detecting potential attacks.
Original NVD description (English source)
CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust system resources, resulting in an application denial-of-service condition. Exploitation of this issue does not require user interaction.

