154 matches found
CVE-2025-1939
Android apps can load web pages using the Custom Tabs feature. This feature supports a transition animation that could have been used to trick a user into granting sensitive permissions by hiding what the user was actually clicking. This vulnerability affects Firefox 136...
UBUNTU-CVE-2025-1939
Android apps can load web pages using the Custom Tabs feature. This feature supports a transition animation that could have been used to trick a user into granting sensitive permissions by hiding what the user was actually clicking. This vulnerability affects Firefox 136...
CVE-2025-1939 Tapjacking in Android Custom Tabs using transition animations
Android apps can load web pages using the Custom Tabs feature. This feature supports a transition animation that could have been used to trick a user into granting sensitive permissions by hiding what the user was actually clicking. This vulnerability was fixed in Firefox 136...
CVE-2025-1939
CVE-2025-1939 is an Android/Firefox-related issue where the Custom Tabs transition animation could be leveraged to mislead users into granting sensitive permissions by obscuring what they click. The vulnerability explicitly affects Mozilla Firefox versions older than 136.0. Impact concerns includ...
CVE-2025-1939 Tapjacking in Android Custom Tabs using transition animations
Android apps can load web pages using the Custom Tabs feature. This feature supports a transition animation that could have been used to trick a user into granting sensitive permissions by hiding what the user was actually clicking. This vulnerability was fixed in Firefox 136...
CVE-2025-1939
Android apps can load web pages using the Custom Tabs feature. This feature supports a transition animation that could have been used to trick a user into granting sensitive permissions by hiding what the user was actually clicking. This vulnerability was fixed in Firefox 136...
PT-2025-9664
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 136 Description The Custom Tabs feature in Android apps can load web pages and supports a transition animation. This animation could be used to deceive users into granting sensitive permissions by concealing what they...
Astra Linux – Vulnerability in Chromium
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0258-2)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0258-2 advisory. - Chromium 128.0.6613.84 boo1229591 CVE-2024-7964: Use after free in Passwords CVE-2024-7965: Inappropriate implementation in V8 CVE-2024-7966: O...
OPENSUSE-SU-2024:0258-1 Security update for chromium
This update for chromium fixes the following issues: - Chromium 128.0.6613.84 boo1229591 CVE-2024-7964: Use after free in Passwords CVE-2024-7965: Inappropriate implementation in V8 CVE-2024-7966: Out of bounds memory access in Skia CVE-2024-7967: Heap buffer overflow in Fonts CVE-2024-7968: Use...
OPENSUSE-SU-2024:0258-2 Security update for chromium
This update for chromium fixes the following issues: - Chromium 128.0.6613.84 boo1229591 CVE-2024-7964: Use after free in Passwords CVE-2024-7965: Inappropriate implementation in V8 CVE-2024-7966: Out of bounds memory access in Skia CVE-2024-7967: Heap buffer overflow in Fonts CVE-2024-7968: Use...
Chromium: CVE-2024-8034 Inappropriate implementation in Custom Tabs
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
SUSE CVE-2024-8034
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
DEBIAN-CVE-2024-8034
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
CVE-2024-8034
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
CVE-2024-8034
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
CVE-2024-8034
CVE-2024-8034 affects Google Chrome on Android prior to 128.0.6613.84 due to an insecure Custom Tabs implementation that allowed a remote attacker to perform UI spoofing via a crafted HTML page. The Chrome release notes and Debian security advisory corroborate the issue and indicate the fix is in...
CVE-2024-8034
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
CVE-2024-8034
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
Google Chrome < 128.0.6613.84 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 128.0.6613.84. It is, therefore, affected by multiple vulnerabilities as referenced in the 202408stable-channel-update-for-desktop21 advisory. - Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a...