CVE Catalog

CVE-2026-47938

CriticalCVSS 10.0
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.09%

26th percentile — higher than 26% of all known CVEs

Summary

Adobe Campaign Classic (ACC) versions 7.4.3 build 9394 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in privilege escalation. Exploitation of this issue does not require user interaction.

Risk Assessment

The organization may be exposed to unauthorized access to system resources, potentially leading to serious security breaches.

Recommendation

It is recommended to update Adobe Campaign Classic to the latest version to mitigate this vulnerability and to monitor systems for unauthorized activities.

Original NVD description (English source)

Adobe Campaign Classic (ACC) versions 7.4.3 build 9394 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in privilege escalation. Exploitation of this issue does not require user interaction. Scope is changed.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS