F-Secure Mobile Security vulnerabilities
10 known vulnerabilities affecting f-secure/f-secure_mobile_security.
Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM7LOW2
Vulnerabilities
Page 1 of 1
CVE-2022-28872HIGHCVSS 8.8≥ unspecified, < 19.02022-05-12
CVE-2022-28872 [HIGH] CVE-2022-28872: A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website could
A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website could make a phishing attack with address bar spoofing as the address bar was not correct if navigation fails in a loop.
cvelistv5nvd
CVE-2022-28873MEDIUMCVSS 4.3v19.02022-05-12
CVE-2022-28873 [MEDIUM] CVE-2022-28873: A vulnerability affecting F-Secure SAFE browser was discovered. An attacker can potentially exploit
A vulnerability affecting F-Secure SAFE browser was discovered. An attacker can potentially exploit Javascript window.open functionality in SAFE Browser which could lead address bar spoofing attacks.
cvelistv5nvd
CVE-2022-28870MEDIUMCVSS 4.3≥ 18.6, < All Version2022-04-15
CVE-2022-28870 [MEDIUM] CVE-2022-28870: A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website could
A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website could make a phishing attack with address bar spoofing as the address bar was not correct if navigation fails.
cvelistv5nvd
CVE-2022-28869MEDIUMCVSS 4.3≥ 18.6, < All Version2022-04-15
CVE-2022-28869 [MEDIUM] CVE-2022-28869: A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website could
A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website could make a phishing attack with address bar spoofing as the browser did not show full URL, such as port number.
cvelistv5nvd
CVE-2022-28868MEDIUMCVSS 4.3≥ 18.6, < All Version2022-04-15
CVE-2022-28868 [MEDIUM] CVE-2022-28868: An Address bar spoofing vulnerability was discovered in Safe Browser for Android. When user clicks o
An Address bar spoofing vulnerability was discovered in Safe Browser for Android. When user clicks on a specially crafted malicious webpage/URL, user may be tricked for a short period of time (until the page loads) to think content may be coming from a valid domain, while the content comes from the attacker controlled site.
cvelistv5nvd
CVE-2021-40835MEDIUMCVSS 4.3≥ 18.3, < 18.52021-12-16
CVE-2021-40835 [MEDIUM] CVE-2021-40835: An URL Address bar spoofing vulnerability was discovered in Safe Browser for iOS. When user clicks o
An URL Address bar spoofing vulnerability was discovered in Safe Browser for iOS. When user clicks on a specially crafted a malicious URL, if user does not carefully pay attention to url, user may be tricked to think content may be coming from a valid domain, while it comes from another. This is performed by using a very long username part of the url so tha
cvelistv5nvd
CVE-2021-40834MEDIUMCVSS 4.3≥ 18.5x, < 17.9*2021-12-10
CVE-2021-40834 [MEDIUM] CWE-1021 CVE-2021-40834: A user interface overlay vulnerability was discovered in F-secure SAFE Browser for Android. When use
A user interface overlay vulnerability was discovered in F-secure SAFE Browser for Android. When user click on a specially crafted seemingly legitimate URL SAFE browser goes into full screen and hides the user interface. A remote attacker can leverage this to perform spoofing attack.
cvelistv5nvd
CVE-2021-33594LOWCVSS 3.5≥ 18.4x, < 18.3x*2021-08-11
CVE-2021-33594 [LOW] CVE-2021-33594: An address bar spoofing vulnerability was discovered in Safe Browser for Android. When user clicks o
An address bar spoofing vulnerability was discovered in Safe Browser for Android. When user clicks on a specially crafted a malicious URL, it appears like a legitimate one on the address bar, while the content comes from other domain and presented in a window, covering the original content. A remote attacker can leverage this to perform address bar spoofing at
cvelistv5nvd
CVE-2021-33595LOWCVSS 3.5≥ 18.4x, < 18.3x*2021-08-11
CVE-2021-33595 [LOW] CVE-2021-33595: A address bar spoofing vulnerability was discovered in Safe Browser for iOS. Showing the legitimate
A address bar spoofing vulnerability was discovered in Safe Browser for iOS. Showing the legitimate URL in the address bar while loading the content from other domain. This makes the user believe that the content is served by a legit domain. A remote attacker can leverage this to perform address bar spoofing attack.
cvelistv5nvd
CVE-2021-33596MEDIUMCVSS 4.1≥ 18.3x, < 18.4x2021-08-05
CVE-2021-33596 [MEDIUM] CWE-1021 CVE-2021-33596: Showing the legitimate URL in the address bar while loading the content from other domain. This make
Showing the legitimate URL in the address bar while loading the content from other domain. This makes the user believe that the content is served by a legit domain. Exploiting the vulnerability requires the user to click on a specially crafted, seemingly legitimate URL containing an embedded malicious redirect while using F-Secure Safe Browser for
cvelistv5nvd