exploitDog

CVE-2015-3830

Опубликовано: 06 июн. 2017

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

The stock Android browser address bar in all Android operating systems suffers from Address Bar Spoofing, which allows remote attackers to trick a victim by displaying a malicious page for legitimate domain names.

Ссылки

https://github.com/CHEF-KOCH/Android-Vulnerabilities-Overview/blob/master/2015.md
Third Party Advisory
https://jsfiddle.net/dy4swq4o/
Exploit
Third Party Advisory
https://github.com/CHEF-KOCH/Android-Vulnerabilities-Overview/blob/master/2015.md
Third Party Advisory
https://jsfiddle.net/dy4swq4o/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00162

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-wvwm-8h46-4mr7

CVSS3: 6.5

github

больше 3 лет назад

The stock Android browser address bar in all Android operating systems suffers from Address Bar Spoofing, which allows remote attackers to trick a victim by displaying a malicious page for legitimate domain names.

EPSS

Процентиль: 37%

0.00162

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-20