Hyland Alfresco Transform Service — known CVE vulnerabilities
Every CVE whose affected-product data names Hyland Alfresco Transform Service, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2026-26338 — CVSS 9.8 (critical): Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve server-side request forgery (SSRF) through the document…
CVE-2026-26339 — CVSS 9.8 (critical): Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve remote code execution through the argument injection…
CVE-2026-26337 — CVSS 8.2 (high): Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery…