CVE-2023-28360

Summary

An omission of security-relevant information vulnerability exists in Brave desktop prior to version 1.48.171 when a user was saving a file there was no download safety check dialog presented to the user.

Affected Software

VendorProductVersion RangeStatus
n/ahttps://laptop-updates.brave.com/latest/winx641.48.171affected

Weaknesses

  • CWE-223: Omission of Security-relevant Information (CWE-223)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References