VYPR
Vendor

Whale Browser

Products
2
CVEs
5
Across products
5
Status
Private

Products

2

Recent CVEs

5
  • CVE-2025-62583CriOct 16, 2025
    risk 0.64cvss 9.8epss 0.00

    Whale Browser before 4.33.325.17 allows an attacker to escape the iframe sandbox in a dual-tab environment.

  • CVE-2022-24074CriMar 17, 2022
    risk 0.64cvss 9.8epss 0.01

    Whale Bridge, a default extension in Whale browser before 3.12.129.18, allowed to receive any SendMessage request from the content script itself that could lead to controlling Whale Bridge if the rendering process compromises.

  • CVE-2020-9753CriMay 20, 2020
    risk 0.59cvss 9.1epss 0.01

    Whale Browser Installer before 1.2.0.5 versions don't support signature verification for Flash installer.

  • CVE-2024-50583MedOct 25, 2024
    risk 0.41cvss 6.3epss 0.00

    Whale browser Installer before 3.1.0.0 allows an attacker to execute a malicious DLL in the user environment due to improper permission settings.

  • CVE-2022-24071MedJan 28, 2022
    risk 0.28cvss 4.3epss 0.01

    A Built-in extension in Whale browser before 3.12.129.46 allows attackers to compromise the rendering process which could lead to controlling browser internal APIs.