Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistF-SecureUSCVELIST:CVE-2021-44749
HistoryMar 06, 2022 - 7:05 p.m.

CVE-2021-44749 Universal Cross-Site Scripting Vulnerability in F-Secure SAFE Browser Protection for Android

2022-03-0619:05:46
F-SecureUS
www.cve.org
1

5.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

9.1 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.1%

JSON

A vulnerability affecting F-Secure SAFE browser protection was discovered improper URL handling can be triggered to cause universal cross-site scripting through browsing protection in a SAFE web browser. User interaction is required prior to exploitation. A successful exploitation may lead to arbitrary code execution.

CNA Affected

[
  {
    "product": "F-Secure SAFE Browser for Android Version 18.5",
    "vendor": "F-Secure",
    "versions": [
      {
        "lessThan": "18.5x",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
nvd
nvd
CVE-2021-44749
2022-03-06 20:15:07
prion
prion
Cross site scripting
2022-03-06 20:15:00
cve
cve
CVE-2021-44749
2022-03-06 20:15:07

5.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

9.1 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.1%

JSON
Related for CVELIST:CVE-2021-44749
nvd1prion1cve1