CVE-2025-48980 in Desktop Browserالمعلومات

الملخص

بحسب MITRE • 31/10/2025

In Brave Browser Desktop versions prior to 1.83.10 that have the split view feature enabled, the "Open Link in Split View" context menu item did not respect the SameSite cookie attribute. Therefore SameSite=Strict cookies would be sent on a cross-site navigation using this method.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Hackerone

حجز

29/05/2025

إفشاء

31/10/2025

الاعتدال

تمت الموافقة

إدخال

VDB-330656

CPE

جاهز

CWE

CWE-565 (مؤكد)

CVSS

6.5 (CNA)

EPSS

0.00049

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-48980
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-48980
CVE Details	https://www.cvedetails.com/cve/CVE-2025-48980/

التالي ▸نظرة عامة ◂ السابق

Interested in the pricing of exploits?

See the underground prices here!