User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects UCWeb's UC Browser version 13.0.8 and prior versions.
References
Link | Resource |
---|---|
https://blog.rapid7.com/2020/10/20/vulntober-multiple-mobile-browser-address-bar-spoofing-vulnerabilities/ | Exploit Mitigation Third Party Advisory |
https://www.rafaybaloch.com/2020/10/multiple-address-bar-spoofing-vulnerabilities.html | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: rapid7
Published: 2020-10-20T00:00:00
Updated: 2020-10-20T16:40:23
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7364
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-10-20T17:15:13.247
Modified: 2020-10-28T19:09:43.993
Link: CVE-2020-7364
JSON object: View
Redhat Information
No data.
CWE