CVE-2022-38163

Опубликовано: 07 нояб. 2022

Источник: nvd

CVSS3: 3.5

EPSS Низкий

Описание

A Drag and Drop spoof vulnerability was discovered in F-Secure SAFE Browser for Android and iOS version 19.0 and below. Drag and drop operation by user on address bar could lead to a spoofing of the address bar.

Ссылки

https://withsecure.com
Vendor Advisory
https://www.f-secure.com/en/home/support/security-advisories
Vendor Advisory
https://www.f-secure.com/en/home/support/security-advisories/cve-2022-38163
Vendor Advisory
https://withsecure.com
Vendor Advisory
https://www.f-secure.com/en/home/support/security-advisories
Vendor Advisory
https://www.f-secure.com/en/home/support/security-advisories/cve-2022-38163
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:f-secure:safe:*:*:*:*:*:android:*:*

Версия до 19.0 (включая)

cpe:2.3:a:f-secure:safe:*:*:*:*:*:iphone_os:*:*

Версия до 19.0 (включая)

EPSS

Процентиль: 60%

0.00396

Низкий

3.5 Low

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-451

Связанные уязвимости

GHSA-x7v7-6r3p-jhgv