CVE-2025-48980 in Desktop Browserinfo

Zusammenfassung

von MITRE • 31.10.2025

In Brave Browser Desktop versions prior to 1.83.10 that have the split view feature enabled, the "Open Link in Split View" context menu item did not respect the SameSite cookie attribute. Therefore SameSite=Strict cookies would be sent on a cross-site navigation using this method.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Hackerone

Reservieren

29.05.2025

Veröffentlichung

31.10.2025

Moderieren

akzeptiert

Eintrag

VDB-330656

CPE

bereit

CWE

CWE-565 (bestätigt)

CVSS

6.5 (CNA)

EPSS

0.00049

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-48980
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-48980
CVE Details	https://www.cvedetails.com/cve/CVE-2025-48980/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!