Vulnerabilities > Brave > Brave > 1.8.96
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-11 | CVE-2023-28360 | Unspecified vulnerability in Brave An omission of security-relevant information vulnerability exists in Brave desktop prior to version 1.48.171 when a user was saving a file there was no download safety check dialog presented to the user. | 4.3 |
| 2022-12-24 | CVE-2022-47933 | Improper Handling of Exceptional Conditions vulnerability in Brave Brave Browser before 1.42.51 allowed a remote attacker to cause a denial of service via a crafted HTML file that references the IPFS scheme. | 6.5 |
| 2022-05-07 | CVE-2022-30334 | Information Exposure vulnerability in Brave Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. | 5.3 |
| 2021-08-31 | CVE-2021-22929 | Information Exposure Through Log Files vulnerability in Brave An information disclosure exists in Brave Browser Desktop prior to version 1.28.62, where logged warning messages that included timestamps of connections to V2 onion domains in tor.log. | 3.6 |
| 2020-11-09 | CVE-2020-8276 | Cleartext Storage of Sensitive Information vulnerability in Brave The implementation of Brave Desktop's privacy-preserving analytics system (P3A) between 1.1 and 1.18.35 logged the timestamp of when the user last opened an incognito window, including Tor windows. | 2.1 |