Описание
Brave Browser before 0.13.0 allows remote attackers to cause a denial of service (resource consumption) via a long alert() argument in JavaScript code, because window dialogs are mishandled.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 0.13.0 (исключая)
cpe:2.3:a:brave:brave_browser:*:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.11217
Средний
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 6.5
debian
почти 8 лет назад
Brave Browser before 0.13.0 allows remote attackers to cause a denial ...
CVSS3: 6.5
github
больше 3 лет назад
Brave Browser before 0.13.0 allows remote attackers to cause a denial of service (resource consumption) via a long alert() argument in JavaScript code, because window dialogs are mishandled.
EPSS
Процентиль: 93%
0.11217
Средний
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
NVD-CWE-noinfo