X Ksi

**Name of the Vulnerable Software and Affected Versions** Ucweb UC Browser version 11.2.5.932 **Description** A critical issue has been found in the HTML Handler component, where the manipulation of the `title` argument leads to improper restriction of rendered UI layers via a URL. This can be exploited remotely. The issue has been publicly disclosed and may be used for attacks. **Recommendations** For Ucweb UC Browser version 11.2.5.932, consider restricting access to the HTML Handler component until a patch is available. As a temporary workaround, avoid using the `title` argument in URLs to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.