4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.3%
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.181.22 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.22 and earlier on Android, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a “universal cross-site scripting vulnerability.”
googlechromereleases.blogspot.com/2011/06/stable-channel-update.html
secunia.com/advisories/44846
secunia.com/advisories/44847
secunia.com/advisories/44871
secunia.com/advisories/44872
secunia.com/advisories/44946
secunia.com/advisories/48308
www.adobe.com/support/security/bulletins/apsb11-13.html
www.blackberry.com/btsc/KB27240
www.redhat.com/support/errata/RHSA-2011-0850.html
www.securityfocus.com/bid/48107
www.securitytracker.com/id?1025603
www.securitytracker.com/id?1025658
exchange.xforce.ibmcloud.com/vulnerabilities/67838
hermes.opensuse.org/messages/8704566
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13762