MEDIUM 4.7
CVE-2016-9473
Brave Browser iOS before 1.2.18 and Brave Browser Android 1.9.56 and earlier suffer from Full Address Bar Spoofing, allowing attackers to trick a victim by displaying a malicious page for legitimate domain names.
CVSS v3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N
Vulnerable CPE configurations
| Vendor | Product | Platform | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| brave | browser | iOS | <1.2.18 | cpe:2.3:a:brave:browser:*:*:*:*:*:iphone_os:*:* |
| brave | browser | Android | <1.9.56 | cpe:2.3:a:brave:browser:*:*:*:*:*:android:*:* |