CVE-2011-2444
Description
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, related to a universal cross-site scripting issue, as exploited in the wild in September 2011.
Risk Information
Base Score
6.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.92
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Upgrade Adobe flash player 10.0.0.584 to latest version | Windows |
| Multiple vulnerabilities affected in Adobe Flash Player Plugin 10.3.186.6 | Windows |
| Multiple vulnerabilities affected in Adobe Flash Player PPAPI 10.3.186.6 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234