CVE Daily

CVE-2008-7266

Cross-site scripting (XSS) vulnerability in an unspecified Shockwave Flash file ...

Medium CVSS 4.3

Overview

Cross-site scripting (XSS) vulnerability in an unspecified Shockwave Flash file in RSA Adaptive Authentication 2.x and 5.7.x allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

CWE: CWE-79 Published: 2010-11-26T20:00:01.563
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 4.3 (MEDIUM)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags