Описание
Brave 0.12.4 has a URI Obfuscation issue in which a string such as https://safe.example.com@unsafe.example.com/ is displayed without a clear UI indication that it is not a resource on the safe.example.com web site.
Ссылки
- Issue TrackingPatchThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- Issue TrackingPatchThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:brave:brave:0.12.4:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00448
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-74
Связанные уязвимости
CVSS3: 6.5
debian
почти 9 лет назад
Brave 0.12.4 has a URI Obfuscation issue in which a string such as htt ...
CVSS3: 6.5
github
больше 3 лет назад
Brave 0.12.4 has a URI Obfuscation issue in which a string such as https://safe.example.com@unsafe.example.com/ is displayed without a clear UI indication that it is not a resource on the safe.example.com web site.
EPSS
Процентиль: 63%
0.00448
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-74