Shadow2639

#11093of 53,624
24.8Total CVSS
Vulnerabilities · 4
Medium
3
High
1
PT-2025-23030
7.8
2024-07-31
Google · Google Chrome · CVE-2025-5066
**Name of the Vulnerable Software and Affected Versions** Google Chrome on Android versions prior to 137.0.7151.55 **Description** The issue is related to an inappropriate implementation in Messages, allowing a remote attacker to perform UI spoofing via a crafted HTML page if the user is convinced to engage in specific UI gestures. **Recommendations** For Google Chrome on Android versions prior to 137.0.7151.55, update to version 137.0.7151.55 or later to resolve the issue.
PT-2023-20201
5.5
2023-11-27
Google · Whale · CVE-2023-25632
**Name of the Vulnerable Software and Affected Versions** Android Mobile Whale browser app versions prior to 3.0.1.2 **Description** The issue allows an attacker to bypass the browser unlock function using the 'Open in Whale' feature. **Recommendations** For versions prior to 3.0.1.2, update to version 3.0.1.2 or later to resolve the issue.
PT-2023-5489
5.0
2023-09-12
Google · Google Chrome · CVE-2023-4907
**Name of the Vulnerable Software and Affected Versions** Google Chrome on Android versions prior to 117.0.5938.62 **Description** The issue is related to an inappropriate implementation in Intents, allowing a remote attacker to obfuscate security UI via a crafted HTML page. This could potentially enable the attacker to bypass security restrictions. The severity of this issue is classified as Low by Chromium. **Recommendations** For Google Chrome on Android versions prior to 117.0.5938.62, update to version 117.0.5938.62 or later to resolve the issue. As a temporary workaround, consider restricting the use of Intents in Google Chrome on Android until a patch is applied.
PT-2023-22871
6.5
2023-07-06
Samsung · Samsung Internet · CVE-2023-30674
**Name of the Vulnerable Software and Affected Versions** Samsung Internet versions prior to 21.0.0.41 **Description** The issue is related to an improper configuration that allows an attacker to bypass SameSite Cookie restrictions. This could potentially lead to security breaches, although specific details about the estimated number of affected devices or real-world incidents are not provided. **Recommendations** For versions prior to 21.0.0.41, update to version 21.0.0.41 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive cookies to minimize the risk of exploitation.