CVE-2021-33593 — MEDIUM (5.3)

Q: What is CVE-2021-33593?

CVE-2021-33593 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.

Q: How severe is CVE-2021-33593?

CVE-2021-33593 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2021-33593?

Check the references section above for vendor advisories and patch information. Affected products include: Navercorp Whale.

Vulnerability Description

Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Navercorp	Whale	< 1.14.0

Related Weaknesses (CWE)

CWE-451

References

https://cve.naver.com/detail/cve-2021-43059Broken LinkNot Applicable
https://cve.naver.com/detail/cve-2021-43059Broken LinkNot Applicable

FAQ

What is CVE-2021-33593?

CVE-2021-33593 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.

How severe is CVE-2021-33593?

CVE-2021-33593 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-33593?

Check the references section above for vendor advisories and patch information. Affected products include: Navercorp Whale.