Vulnerabilities > Duckduckgo > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-25 | CVE-2021-44683 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Duckduckgo The DuckDuckGo browser 7.64.4 on iOS allows Address Bar Spoofing due to mishandling of the JavaScript window.open function (used to open a secondary browser window). | 8.2 |
| 2020-07-02 | CVE-2020-15502 | Information Exposure vulnerability in Duckduckgo The DuckDuckGo application through 5.58.0 for Android, and through 7.47.1.0 for iOS, sends hostnames of visited web sites within HTTPS .ico requests to servers in the duckduckgo.com domain, which might make visit data available temporarily at a Potentially Unwanted Endpoint. | 7.5 |