Medium severity6.5NVD Advisory· Published May 8, 2018· Updated Jun 17, 2026
CVE-2018-10799
CVE-2018-10799
Description
A hang issue was discovered in Brave before 0.14.0 (on, for example, Linux). This vulnerability is caused by the mishandling of a long URL formed by window.location+='?\u202a\uFEFF\u202b'; concatenation in a SCRIPT element.
Affected products
1- Range: <0.14.0
Patches
Vulnerability mechanics
References
1- hackerone.com/reports/181558nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.