Reflected Cross-Site Scripting Vulnerability in Radware Alteon Load Balancer
CVE-2026-5754

6.1MEDIUM

Key Information:

Vendor: Radware
Status: Alteon Vadc
Vendor: CVE Published:; 14 April 2026

What is CVE-2026-5754?

A reflected cross-site scripting vulnerability has been identified in Radware Alteon version 34.5.4.0, which allows attackers to inject malicious scripts into web applications via manipulated request parameters. If successfully executed, this vulnerability can enable attackers to carry out unauthorized actions, potentially compromising sensitive data and user accounts.

Affected Version(s)

Alteon vADC 34.5.4.0

References

https://www.radware.com/products/alteon/

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 14, 2026
Vulnerability Reserved
Apr 7, 2026

CVE-2026-5754 Data

JSON