CVE-2018-18334

2019-02-0522:00:00

trendmicro

www.cve.org

7.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.3%

JSON

A vulnerability in the Private Browser of Trend Micro Dr. Safety for Android (Consumer) versions below 3.0.1478 could allow an remote attacker to bypass the Same Origin Policy (SOP) and obtain sensitive information via crafted JavaScript code on vulnerable installations.

CNA Affected

[
  {
    "product": "Trend Micro Dr. Safety for Android (Consumer)",
    "vendor": "Trend Micro",
    "versions": [
      {
        "status": "affected",
        "version": "Before 3.0.1478"
      }
    ]
  }
]

References

esupport.trendmicro.com/en-us/home/pages/technical-support/1121933.aspx