PT-2022-8280 · Bromite · Bromite

Published

2022-01-26

Updated

2022-02-01

CVE-2019-25056

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Bromite versions 78.0.3904.130 and earlier

Description The issue allows probing of resources to identify the application version and defeat the User-Agent protection mechanism due to adblock rules in the release APK.

Recommendations For Bromite versions 78.0.3904.130 and earlier, consider updating to a version where this issue is resolved, as the current version allows for the identification of the application version and the defeat of the User-Agent protection mechanism. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Side Channel Attack

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-203

Related Identifiers

CVE-2019-25056

Affected Products

Bromite

PT-2022-8280 · Bromite · Bromite

CVE-2019-25056

Weakness Enumeration

Related Identifiers

Affected Products

References · 5