CVE-2023-52263
- EPSS 0.07%
- Veröffentlicht 30.12.2023 19:15:08
- Zuletzt bearbeitet 21.11.2024 08:39:28
Brave Browser before 1.59.40 does not properly restrict the schema for WebUI factory and redirect. This is related to browser/brave_content_browser_client.cc and browser/ui/webui/brave_web_ui_controller_factory.cc.
CVE-2023-28364
- EPSS 0.07%
- Veröffentlicht 01.07.2023 00:15:10
- Zuletzt bearbeitet 21.11.2024 07:54:55
An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL.
CVE-2021-22917
- EPSS 0.3%
- Veröffentlicht 12.07.2021 11:15:07
- Zuletzt bearbeitet 21.11.2024 05:50:54
Brave Browser Desktop between versions 1.17 and 1.20 is vulnerable to information disclosure by way of DNS requests in Tor windows not flowing through Tor if adblocking was enabled.
CVE-2017-1000461
- EPSS 0.22%
- Veröffentlicht 03.01.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:04:47
Brave Software's Brave Browser, version 0.19.73 (and earlier) is vulnerable to an incorrect access control issue in the "JS fingerprinting blocking" component, resulting in a malicious website being able to access the fingerprinting-associated browse...
CVE-2016-9473
- EPSS 0.43%
- Veröffentlicht 28.03.2017 02:59:01
- Zuletzt bearbeitet 20.04.2025 01:37:25
Brave Browser iOS before 1.2.18 and Brave Browser Android 1.9.56 and earlier suffer from Full Address Bar Spoofing, allowing attackers to trick a victim by displaying a malicious page for legitimate domain names.