Incorrect authorization in Adobe Campaign - CVE-2026-48286
Published: July 1, 2026
Adobe Campaign
Detailed vulnerability description
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to incorrect authorization in Adobe Campaign Classic when handling network requests. A remote attacker can send a specially crafted request to execute arbitrary code.
This issue affects on-premise instances only, including on-premise components in hybrid deployments.