CVE-2022-28873

Опубликовано: 12 мая 2022

Источник: nvd

CVSS3: 4.3

CVSS2: 4.3

EPSS Низкий

Описание

A vulnerability affecting F-Secure SAFE browser was discovered. An attacker can potentially exploit Javascript window.open functionality in SAFE Browser which could lead address bar spoofing attacks.

Ссылки

https://www.f-secure.com/en/home/support/security-advisories
Vendor Advisory
https://www.f-secure.com/en/home/support/security-advisories/cve-2022-28873
Vendor Advisory
https://www.f-secure.com/en/home/support/security-advisories
Vendor Advisory
https://www.f-secure.com/en/home/support/security-advisories/cve-2022-28873
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:f-secure:safe:*:*:*:*:*:android:*:*

Версия до 19.0 (включая)

EPSS

Процентиль: 55%

0.00328

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-w52f-cm62-j8g7

CVSS3: 4.3

github

больше 3 лет назад

A vulnerability affecting F-Secure SAFE browser was discovered. An attacker can potentially exploit Javascript window.open functionality in SAFE Browser which could lead address bar spoofing attacks.

EPSS

Процентиль: 55%

0.00328

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

NVD-CWE-noinfo