Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android browser vulnerabilities and exploits
(subscribe to this query)
481
VMScore
CVE-2014-5770
The Web Browser for Android (aka explore.web.browser) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Web Browser For Android Project Web Browser For Android 1.2
516
VMScore
CVE-2008-7298
The Android browser in Android cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle malicious users to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict ...
Android Android Browser
Google Android
660
VMScore
CVE-2014-6041
The Android WebView in Android prior to 4.4 allows remote malicious users to bypass the Same Origin Policy via a crafted attribute containing a \u0000 character, as demonstrated by an onclick="window.open('\u0000javascript: sequence to the Android Browser application 4....
Google Android Browser 4.2.1
2 Metasploit modules
1 Github repository
1 Article
187
VMScore
CVE-2012-5179
The Boat Browser application prior to 4.2 and Boat Browser Mini application prior to 3.9 for Android do not properly implement the WebView class, which allows malicious users to obtain sensitive information via a crafted application.
Boatmob Boat Browser 3.1
Boatmob Boat Browser 2.6
Boatmob Boat Browser
Boatmob Boat Browser 3.3
Boatmob Boat Browser 2.4.1
Boatmob Boat Browser 2.3
Boatmob Boat Browser 2.2
Boatmob Boat Browser 2.1
Boatmob Boat Browser 3.2.1
Boatmob Boat Browser 3.0
Boatmob Boat Browser 2.5.1
Boatmob Boat Browser 2.0
Boatmob Boat Browser Mini 3.3
Boatmob Boat Browser Mini 2.7
Boatmob Boat Browser Mini 2.6.1
Boatmob Boat Browser Mini 3.4
Boatmob Boat Browser Mini 2.8
Boatmob Boat Browser Mini 3.2
Boatmob Boat Browser Mini 2.7.1
Boatmob Boat Browser Mini 3.1
Boatmob Boat Browser Mini 3.0.1
Boatmob Boat Browser Mini 3.6
383
VMScore
CVE-2012-2635
The Dolphin Browser HD application prior to 7.6 and Dolphin for Pad application prior to 1.0.1 for Android do not properly implement the WebView class, which allows remote malicious users to obtain sensitive information via a crafted application.
Dolphin-browser Dolphin Browser Hd
Dolphin-browser Dolphin Browser Hd 6.2.0
Dolphin-browser Dolphin Browser Hd 7.2.1
Dolphin-browser Dolphin Browser Hd 7.3.0
Dolphin-browser Dolphin For Pad
516
VMScore
CVE-2013-2316
The Yahoo! Browser application 1.4.4 and previous versions for Android allows remote malicious users to spoof the address bar via vectors related to URL display, a different vulnerability than CVE-2013-2307.
Yahoo Yahoo\\! Browser 1.2.0
Yahoo Yahoo\\! Browser 1.4.2
Yahoo Yahoo\\! Browser
Yahoo Yahoo\\! Browser 1.4.4
890
VMScore
CVE-2012-1392
Unspecified vulnerability in the Dolphin Browser HD (mobi.mgeek.TunnyBrowser) application 6.2.0, 7.2.1, 7.3.0, and 7.4.0 for Android has unknown impact and attack vectors.
Dolphin-browser Dolphin Browser Hd 6.2.0
Dolphin-browser Dolphin Browser Hd 7.2.1
Dolphin-browser Dolphin Browser Hd 7.3.0
Dolphin-browser Dolphin Browser Hd 7.4.0
NA
CVE-2023-6540
A vulnerability was reported in the Lenovo Browser Mobile and Lenovo Browser HD Apps for Android that could allow an malicious user to craft a payload that could result in the disclosure of sensitive information.
Lenovo Browser Hd
Lenovo Browser Mobile
383
VMScore
CVE-2021-29370
A UXSS exists in the Thanos-Soft Cheetah Browser in Android 1.2.0 due to the inadequate filter of the intent scheme. This resulted in Cross-site scripting on the cheetah browser in any website.
Cheetah Browser Project Cheetah Browser 1.2.0
481
VMScore
CVE-2014-5807
The Safari Browser (aka safari.safaribrowser.internetexplorer) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Safari Browser Project Safari Browser 1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »