Vulnerabilities > CVE-2021-40834 - Improper Restriction of Rendered UI Layers or Frames vulnerability in F-Secure Safe

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE

Summary

A user interface overlay vulnerability was discovered in F-secure SAFE Browser for Android. When user click on a specially crafted seemingly legitimate URL SAFE browser goes into full screen and hides the user interface. A remote attacker can leverage this to perform spoofing attack.

Vulnerable Configurations

Part Description Count
Application
F-Secure
1