Alfresco Content Services
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Alfresco Content Services.
By the Year
In 2026 there have been 0 vulnerabilities in Alfresco Content Services. Alfresco Content Services did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 2 | 7.05 |
It may take a day or so for new Alfresco Content Services vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Alfresco Content Services Security Vulnerabilities
An issue was discovered in Hyland org.alfresco:alfresco-content-services through 6.2.2.18 and org.alfresco:alfresco-transform-services through 1.3
CVE-2021-41792
5.3 - Medium
- October 21, 2021
An issue was discovered in Hyland org.alfresco:alfresco-content-services through 6.2.2.18 and org.alfresco:alfresco-transform-services through 1.3. A crafted HTML file, once uploaded, could trigger an unexpected request by the transformation engine. The response to the request is not available to the attacker, i.e., this is blind SSRF.
SSRF
An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2
CVE-2021-41790
8.8 - High
- October 21, 2021
An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2. Script Action execution allows executing scripts uploaded outside of the Data Dictionary. This could allow a logged-in attacker to execute arbitrary code inside a sandboxed environment.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Alfresco Content Services or by Alfresco? Click the Watch button to subscribe.
