CVE-2021-33593
MEDIUMWhale < 1.14.0 - Address Bar Spoofing via UI Misrepresentation
Title source: llmDescription
Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.
References (1)
Core 1
Core References
Broken Link, Not Applicable x_refsource_confirm
https://cve.naver.com/detail/cve-2021-43059
Scores
CVSS v3
5.3
EPSS
0.0069
EPSS Percentile
47.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Details
CWE
CWE-451
Status
published
Products (1)
navercorp/whale
< 1.14.0
Published
Nov 02, 2021
Tracked Since
Feb 18, 2026