Vulnerabilities / SWFObject library with known vulnerabilities

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
↓

Severity

Low

CWE Name

SWFObject library with known vulnerabilities

CWE ID

CWE-1035

CVSS Score

4.8

Compliance

OWASP TOP10 -> A5, A6
PCI-DSS -> 6.2

SWFObject library with known vulnerabilities

The application uses an outdated version of the SWFObject library, which has known vulnerabilities.

How to fix

generic

To fix this issue, please update SWFObject to the latest available version on its official website.
Do not forget to update all the SWFObject files you have on the server.