CVE-2023-28360
First published: Thu May 11 2023(Updated: )
An omission of security-relevant information vulnerability exists in Brave desktop prior to version 1.48.171 when a user was saving a file there was no download safety check dialog presented to the user.
Credit: support@hackerone.com support@hackerone.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Brave Browser | <1.48.171 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Brave desktop vulnerability?
The vulnerability ID for this Brave desktop vulnerability is CVE-2023-28360.
What is the severity level of CVE-2023-28360?
The severity level of CVE-2023-28360 is medium (4.3).
What is the affected software version for CVE-2023-28360?
The affected software version for CVE-2023-28360 is Brave desktop prior to version 1.48.171.
What is the description of CVE-2023-28360?
CVE-2023-28360 is an omission of security-relevant information vulnerability in Brave desktop where there was no download safety check dialog presented to the user when saving a file.
Where can I find more information about CVE-2023-28360?
You can find more information about CVE-2023-28360 at the following link: [https://hackerone.com/reports/1848062]
- agent/type
- agent/softwarecombine
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/source
- agent/last-modified-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/brave
- canonical/brave browser