CVE-2024-9285

🗓️ 27 Feb 2025 16:35:04Reported by VulDBType

Vulnerability in Tu Yafeng Via Browser allows remote cross site scripting attacks; patch recommended.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-9285	27 Feb 202517:25	–	circl
CNNVD	Viayoo Via Browser 代码注入漏洞	27 Feb 202500:00	–	cnnvd
Cvelist	CVE-2024-9285 Tu Yafeng Via Browser Javascript Bridge cross site scripting	27 Feb 202516:35	–	cvelist
EUVD	EUVD-2024-53937	3 Oct 202520:07	–	euvd
NVD	CVE-2024-9285	27 Feb 202517:15	–	nvd
Positive Technologies	PT-2025-8972 · Tu Yafeng · Via Browser	27 Feb 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-9285	1 Mar 202517:20	–	redhatcve
Vulnrichment	CVE-2024-9285 Tu Yafeng Via Browser Javascript Bridge cross site scripting	27 Feb 202516:35	–	vulnrichment

Vulners

Node

tu_yafeng via_browserMatch5.0

tu_yafeng via_browserMatch5.1

tu_yafeng via_browserMatch5.2

tu_yafeng via_browserMatch5.3

tu_yafeng via_browserMatch5.4

tu_yafeng via_browserMatch5.5

tu_yafeng via_browserMatch5.6

tu_yafeng via_browserMatch5.7

tu_yafeng via_browserMatch5.8

tu_yafeng via_browserMatch5.9

[
  {
    "vendor": "Tu Yafeng",
    "product": "Via Browser",
    "versions": [
      {
        "version": "5.0",
        "status": "affected"
      },
      {
        "version": "5.1",
        "status": "affected"
      },
      {
        "version": "5.2",
        "status": "affected"
      },
      {
        "version": "5.3",
        "status": "affected"
      },
      {
        "version": "5.4",
        "status": "affected"
      },
      {
        "version": "5.5",
        "status": "affected"
      },
      {
        "version": "5.6",
        "status": "affected"
      },
      {
        "version": "5.7",
        "status": "affected"
      },
      {
        "version": "5.8",
        "status": "affected"
      },
      {
        "version": "5.9",
        "status": "affected"
      }
    ],
    "modules": [
      "Javascript Bridge"
    ]
  }
]

Source	Link
modzero	www.modzero.com/static/MZ-25-01_modzero_uXSS-in-Via-Browser.pdf
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
modzero	www.modzero.com/en/advisories/mz-25-01-via-browser/

15 Apr 2026 00:35Current

4.4Medium risk

Vulners AI Score4.4

CVSS 3.14.3

CVSS 25

CVSS 45.3

CVSS 34.3

EPSS0.00558

SSVC