CVE-2022-28868

Summary

An Address bar spoofing vulnerability was discovered in Safe Browser for Android. When user clicks on a specially crafted malicious webpage/URL, user may be tricked for a short period of time (until the page loads) to think content may be coming from a valid domain, while the content comes from the attacker controlled site.

Affected Software

VendorProductVersion RangeStatus
F-SecureF-Secure Mobile Security18.6 < All Versionaffected

Weaknesses

  • Address Bar Spoofing Vulnerability in F-Secure SAFE Browser for Android

ADP Enrichment

CVE Program Container

Additional References

References