PT-2018-16895 · Google+1 · Android+1

Published

2018-01-12

Updated

2019-10-03

CVE-2018-5326

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cheetah Mobile CM Browser version 5.22.06.0012

Description The issue allows for Same Origin Policy Bypass when Cheetah Mobile CM Browser is installed on older Android platforms.

Recommendations For version 5.22.06.0012, consider updating to a newer version that addresses this issue, if available. As a temporary workaround, restrict browser functionality to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-5326

Affected Products

Android

Cm Browser

PT-2018-16895 · Google+1 · Android+1

CVE-2018-5326

Related Identifiers

Affected Products

References · 3