Описание
The Dolphin Browser HD application before 7.6 and Dolphin for Pad application before 1.0.1 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
Уязвимые конфигурации
Конфигурация 1Версия до 7.4.0 (включая)
Одновременно
Одно из
cpe:2.3:a:dolphin-browser:dolphin_browser_hd:*:*:*:*:*:*:*:*
cpe:2.3:a:dolphin-browser:dolphin_browser_hd:6.2.0:*:*:*:*:*:*:*
cpe:2.3:a:dolphin-browser:dolphin_browser_hd:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:dolphin-browser:dolphin_browser_hd:7.3.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
Конфигурация 2Версия до 1.0 (включая)
cpe:2.3:a:dolphin-browser:dolphin_for_pad:*:beta:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.0023
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
The Dolphin Browser HD application before 7.6 and Dolphin for Pad application before 1.0.1 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
EPSS
Процентиль: 46%
0.0023
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-200