CVE-2021-33596

Summary

Showing the legitimate URL in the address bar while loading the content from other domain. This makes the user believe that the content is served by a legit domain. Exploiting the vulnerability requires the user to click on a specially crafted, seemingly legitimate URL containing an embedded malicious redirect while using F-Secure Safe Browser for iOS.

Affected Software

VendorProductVersion RangeStatus
F-SecureF-Secure Mobile Security18.3x < 18.4xaffected

Weaknesses

  • Fake Apple login prompt in F-Secure SAFE browser for iOS

ADP Enrichment

CVE Program Container

Additional References

References