CVE-2022-38164

CWE-2903 documents3 sources
Severity
6.5MEDIUM
EPSS
0.4%
top 41.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
F-secure Safe
Timeline
PublishedNov 7
Latest updateNov 8

Description

A vulnerability affecting F-Secure SAFE browser for Android and iOS was discovered. A maliciously crafted website could make a phishing attack with URL spoofing as the browser only display certain part of the entire URL.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDf-secure/safe19.0

🔴Vulnerability Details

2
GHSA
GHSA-c7rr-4vvg-c7r2: WithSecure through 2022-08-10 allows attackers to cause a denial of service (issue 3 of 5)2022-11-08
CVEList
CVE-2022-38164: A vulnerability affecting F-Secure SAFE browser for Android and iOS was discovered2022-11-07
CVE-2022-38164 (MEDIUM CVSS 6.5) | A vulnerability affecting F-Secure | cvebase.io