Every CVE whose affected-product data names Brave Browser, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-22917 — CVSS 6.5 (medium): Brave Browser Desktop between versions 1.17 and 1.20 is vulnerable to information disclosure by way of DNS requests in Tor windows not…
CVE-2023-28364 — CVSS 6.1 (medium): An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to…
CVE-2023-52263 — CVSS 6.1 (medium): Brave Browser before 1.59.40 does not properly restrict the schema for WebUI factory and redirect. This is related to…
CVE-2016-9473 — CVSS 4.7 (medium): Brave Browser iOS before 1.2.18 and Brave Browser Android 1.9.56 and earlier suffer from Full Address Bar Spoofing, allowing attackers to…
CVE-2017-1000461 — CVSS 4.7 (medium): Brave Software's Brave Browser, version 0.19.73 (and earlier) is vulnerable to an incorrect access control issue in the "JS fingerprinting…