CVE-2007-3457
Description
Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which might allow remote attackers to conduct a CSRF attack via a crafted SWF file.
Risk Information
Base Score
8.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
5.853
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Upgrade Adobe flash player 8.0.34.0 to latest version | Windows |
| Vulnerabilities CVE-2007-3457 are affected in Adobe Flash Player Plugin 8.0.34.0 | Windows |
| Vulnerabilities CVE-2007-3457 are affected in Adobe Flash Player PPAPI 8.0.34.0 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234