VYPR
Unrated severityNVD Advisory· Published Feb 19, 2026· Updated Feb 20, 2026

Hyland Alfresco Transformation Service Absolute Path Traversal Arbitrary File Read and SSRF

CVE-2026-26337

Description

Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through the absolute path traversal.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.