Barathstalin6

**Name of the Vulnerable Software and Affected Versions** Zen Browser versions prior to 1.19.12b **Description** The browser incorrectly truncates long hostnames in the address bar, displaying only the attacker-controlled prefix of the subdomain and hiding the actual registrable domain (eTLD+1). This allows an attacker to create long malicious subdomains that visually mimic trusted brands, misleading users about the site's origin and compromising the URL bar as a security indicator, which facilitates phishing and supply-chain attacks. **Recommendations** Update to version 1.19.12b.