VYPR

Browser

by Brave

CVEs (6)

  • CVE-2025-23086MedJan 21, 2025
    risk 0.40cvss 6.1epss 0.00

    On most desktop platforms, Brave Browser versions 1.70.x-1.73.x included a feature to show a site's origin on the OS-provided file selector dialog when a site prompts the user to upload or download a file. However the origin was not correctly inferred in some cases. When…

  • CVE-2016-9473MedMar 28, 2017
    risk 0.31cvss 4.7epss 0.02

    Brave Browser iOS before 1.2.18 and Brave Browser Android 1.9.56 and earlier suffer from Full Address Bar Spoofing, allowing attackers to trick a victim by displaying a malicious page for legitimate domain names.

  • CVE-2022-47933Dec 24, 2022
    risk 0.00cvss epss 0.01

    Brave Browser before 1.42.51 allowed a remote attacker to cause a denial of service via a crafted HTML file that references the IPFS scheme. This vulnerability is caused by an uncaught exception in the function ipfs::OnBeforeURLRequest_IPFSRedirectWork() in…

  • CVE-2022-47932Dec 24, 2022
    risk 0.00cvss epss 0.01

    Brave Browser before 1.43.34 allowed a remote attacker to cause a denial of service via a crafted HTML file that mentions an ipfs:// or ipns:// URL. This vulnerability is caused by an incomplete fix for CVE-2022-47933.

  • CVE-2022-47934Dec 24, 2022
    risk 0.00cvss epss 0.01

    Brave Browser before 1.43.88 allowed a remote attacker to cause a denial of service in private and guest windows via a crafted HTML file that mentions an ipfs:// or ipns:// URL. This is caused by an incomplete fix for CVE-2022-47932 and CVE-2022-47934.

  • CVE-2021-21323Feb 23, 2021
    risk 0.00cvss epss 0.02

    Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests that bypassed the Brave Tor proxy. Users with adblocking enabled would leak DNS…