Lucene search
K

6 matches found

CVE
CVE
added 2022/03/25 10:32 a.m.102 views

CVE-2021-44751

The CVE describes a vulnerability in the F-Secure SAFE browser where a malicious website containing USSD code via JavaScript or an iframe can trigger the browser’s dialer. This could allow an attacker to send USSD messages or initiate calls. The impact notes that on most modern Androids the diale...

5.3CVSS4.8AI score0.00553EPSS
CVE
CVE
added 2021/12/16 10:58 a.m.65 views

CVE-2021-40835

CVE-2021-40835 affects F-Secure Safe Browser for iOS. The issue is an URL address bar spoofing vulnerability where a specially crafted URL with an extremely long username part can mislead users into thinking content comes from a valid domain. The described root cause is that the username portion ...

4.6CVSS4.4AI score0.00705EPSS
CVE
CVE
added 2019/05/17 8:5 p.m.63 views

CVE-2019-11644

The CVE-2019-11644 entry describes a local privilege escalation in the Windows installers for F-Secure products (SAFE for Windows before 17.6; Internet Security before 17.6; Anti-Virus before 17.6; Client Security Standard/Premium before 14.10; PSB Workstation Security before 12.01; Computer Prot...

7.8CVSS7.6AI score0.01349EPSS
CVE
CVE
added 2021/08/11 10:28 a.m.60 views

CVE-2021-33595

Affected product. Safe Browser for iOS (F-Secure Safe Browser). Issue. Address bar spoofing: the address bar shows a legitimate URL while loading content from another domain, causing users to believe the content is from a trusted site. Root cause (as described). A mismatch between displayed URL a...

3.5CVSS3.9AI score0.01075EPSS
CVE
CVE
added 2021/08/05 7:26 p.m.53 views

CVE-2021-33596

Summary of CVE-2021-33596 findings : The vulnerability is described as a UI spoofing issue in which the browser shows a legitimate URL in the address bar while content is loaded from a different domain. Exploitation requires the user to click on a specially crafted URL containing an embedded mali...

4.1CVSS4.1AI score0.00797EPSS
CVE
CVE
added 2021/08/11 10:28 a.m.45 views

CVE-2021-33594

CVE-2021-33594 documents an address bar spoofing vulnerability in Safe Browser for Android. The vulnerability allows a remote attacker to present a legitimate-looking URL in the address bar while loading content from a different domain in a window, effectively deceiving users. Reported consistent...

3.5CVSS3.9AI score0.01075EPSS