Medium severity6.5NVD Advisory· Published Apr 4, 2018· Updated Jun 17, 2026

CVE-2017-18256

Description

Brave Browser before 0.13.0 allows remote attackers to cause a denial of service (resource consumption) via a long alert() argument in JavaScript code, because window dialogs are mishandled.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Brave/Braveinferred
Range: <0.13.0
Brave Browser/Brave Browserllm-create
Range: <0.13.0

Patches

Vulnerability mechanics

References

hackerone.com/reports/176066nvdExploitThird Party Advisory
www.exploit-db.com/exploits/44474/nvdExploitThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.423
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000