CVE-2021-33593

EPSS 0.69%
Veröffentlicht 02.11.2021 07:15:07
Zuletzt bearbeitet 21.11.2024 06:09:09
Quelle cve@navercorp.com
CVE-Watchlists
Login
Unerledigt
Login

Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Navercorp ≫ Whale SwPlatformiphone_os Version < 1.14.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.69%	0.477

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

CWE-451 User Interface (UI) Misrepresentation of Critical Information

The user interface (UI) does not properly represent critical information to the user, allowing the information - or its source - to be obscured or spoofed. This is often a component in phishing attacks.

https://cve.naver.com/detail/cve-2021-43059

Broken Link

Not Applicable

https://nvd.nist.gov/vuln/detail/CVE-2021-33593

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-33593

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-33593

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2021-33593