Vulnerability Details CVE-2018-7635
Whale Browser before 1.0.41.8 displays no URL information but only a title of a web page on the browser's address bar when visiting a blank page, which allows an attacker to display a malicious web page with a fake domain name.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.7%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
Products affected by CVE-2018-7635
-
cpe:2.3:a:navercorp:whale:-
-
cpe:2.3:a:navercorp:whale:0.10.36.11
-
cpe:2.3:a:navercorp:whale:0.10.36.14
-
cpe:2.3:a:navercorp:whale:0.10.36.20
-
cpe:2.3:a:navercorp:whale:0.4.3.0
-
cpe:2.3:a:navercorp:whale:0.5.16.0
-
cpe:2.3:a:navercorp:whale:0.5.17.0
-
cpe:2.3:a:navercorp:whale:0.5.18.4
-
cpe:2.3:a:navercorp:whale:0.5.19.0
-
cpe:2.3:a:navercorp:whale:0.5.20.4
-
cpe:2.3:a:navercorp:whale:0.5.20.6
-
cpe:2.3:a:navercorp:whale:0.5.21.3
-
cpe:2.3:a:navercorp:whale:0.5.22.3
-
cpe:2.3:a:navercorp:whale:0.5.23.6
-
cpe:2.3:a:navercorp:whale:0.5.24.3
-
cpe:2.3:a:navercorp:whale:0.5.25.5
-
cpe:2.3:a:navercorp:whale:0.7.26.4
-
cpe:2.3:a:navercorp:whale:0.7.27.4
-
cpe:2.3:a:navercorp:whale:0.7.28.3
-
cpe:2.3:a:navercorp:whale:0.7.29.5
-
cpe:2.3:a:navercorp:whale:0.7.30.7
-
cpe:2.3:a:navercorp:whale:0.7.31.4
-
cpe:2.3:a:navercorp:whale:0.7.32.5
-
cpe:2.3:a:navercorp:whale:0.7.32.9
-
cpe:2.3:a:navercorp:whale:0.7.33.5
-
cpe:2.3:a:navercorp:whale:0.9.34.10
-
cpe:2.3:a:navercorp:whale:0.9.34.9
-
cpe:2.3:a:navercorp:whale:0.9.35.4
-
cpe:2.3:a:navercorp:whale:0.9.35.6
-
cpe:2.3:a:navercorp:whale:1.0.37.12
-
cpe:2.3:a:navercorp:whale:1.0.37.13
-
cpe:2.3:a:navercorp:whale:1.0.37.16
-
cpe:2.3:a:navercorp:whale:1.0.38.8
-
cpe:2.3:a:navercorp:whale:1.0.38.9
-
cpe:2.3:a:navercorp:whale:1.0.39.11
-
cpe:2.3:a:navercorp:whale:1.0.39.16
-
cpe:2.3:a:navercorp:whale:1.0.40.10
-
cpe:2.3:a:navercorp:whale:1.0.40.7
-
cpe:2.3:a:navercorp:whale:1.0.40.8