CVE-2024-37406 Vulnerability Details

  /     /     /  

CVE-2024-37406 Metadata Quick Info

CVE Published: 18/09/2024 | CVE Updated: 19/09/2024 | CVE Year: 2024
Source: hackerone | Vendor: Brave | Product: Android Browser
Status : PUBLISHED

---

CVE-2024-37406 Description

In Brave Android prior to v1.67.116, domains in the Brave Shields popup are elided from the right instead of the left, which may lead to domain confusion.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name:
Source: Brave

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).