Approved changes feed: RSS · Atom
cpe:2.3:a:brave:browser:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Brave (b3516991-2714-56a1-be63-9c87fa6b4495) |
|---|---|
| Product | Browser (7f2fea31-353e-59b7-bfe4-06093e21f3c7) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/brave/brave-browser |
purl2cpe | 2026-06-01 10:15:07.791838 |
pkg:npm/brave-browser |
purl2cpe | 2026-06-01 10:15:07.791839 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-52263 |
vulnerable | 2026-06-08 06:17:54.751198 |
Details available
Brave Browser before 1.59.40 does not properly restrict the schema for WebUI factory and redirect. This is related to browser/brave_content_browser_client.cc and browser/ui/webui/brave_web_ui_controller_factory.cc.
Published: 2023-12-30T00:00:00.000Z
Updated: 2024-08-02T22:55:41.626Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28364 |
vulnerable | 2026-06-08 06:01:10.561772 |
Details available
An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL.
Published: 2023-06-30T23:20:12.719Z
Updated: 2024-11-26T19:47:59.748Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-22917 |
vulnerable | 2026-06-08 05:30:01.860619 |
Details available
Brave Browser Desktop between versions 1.17 and 1.20 is vulnerable to information disclosure by way of DNS requests in Tor windows not flowing through Tor if adblocking was enabled.
Published: 2021-07-12T10:22:39.000Z
Updated: 2024-08-03T18:58:26.017Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-1000461 |
vulnerable | 2026-06-08 05:08:34.579200 |
Details available
Brave Software's Brave Browser, version 0.19.73 (and earlier) is vulnerable to an incorrect access control issue in the "JS fingerprinting blocking" component, resulting in a malicious website being able to access the fingerprinting-associated browser functionality (that the browser intends to block).
Published: 2018-01-03T20:00:00.000Z
Updated: 2024-09-17T02:56:48.911Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.