CVE-2021-40834

Summary

A user interface overlay vulnerability was discovered in F-secure SAFE Browser for Android. When user click on a specially crafted seemingly legitimate URL SAFE browser goes into full screen and hides the user interface. A remote attacker can leverage this to perform spoofing attack.

Affected Software

VendorProductVersion RangeStatus
F-SecureF-Secure Mobile Security18.5x < 17.9*affected

Weaknesses

  • User interface Spoofing in F-Secure SAFE browser for Android

ADP Enrichment

CVE Program Container

Additional References

References