CVE-2017-8459

MEDIUM

Brave 0.12.4 - Info Disclosure

Title source: llm

Description

Brave 0.12.4 has a Status Bar Obfuscation issue in which a redirection target is shown in a possibly unexpected way. NOTE: third parties dispute this issue because it is a behavior that might have legitimate applications in (for example) the display of web-search results

References (1)

[Exploit, Third Party Advisory, VDB Entry] https://hackerone.com/reports/175701

Scores

CVSS v3 5.3

EPSS 0.0014

EPSS Percentile 33.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Classification

Status published

Affected Products (2)

brave/brave

n/a/n/a

Timeline

Published May 03, 2017

Tracked Since Feb 18, 2026