Vulnerabilities > CVE-2022-28868 - Unspecified vulnerability in F-Secure Safe

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

f-secure

NVD

Published: 2022-04-15

Updated: 2022-04-26

Summary

An Address bar spoofing vulnerability was discovered in Safe Browser for Android. When user clicks on a specially crafted malicious webpage/URL, user may be tricked for a short period of time (until the page loads) to think content may be coming from a valid domain, while the content comes from the attacker controlled site.

Vulnerable Configurations

Part	Description	Count
Application	F-Secure F Secure Safe - F Secure Safe 17.9 F Secure Safe 18.4.0 F Secure Safe 18.5 F Secure Safe 18.6	5

References

https://www.f-secure.com/en/home/support/security-advisories/cve-2022-28868
https://www.f-secure.com/en/home/support/security-advisories