Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
F-Secure SAFE Browser vulnerable to USSD attacks
Vulnerability Description
A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website attached with USSD code in JavaScript or iFrame can trigger dialer application from F-Secure browser which can be exploited by an attacker to send unwanted USSD messages or perform unwanted calls. In most modern Android OS, dialer application will require user interaction, however, some older Android OS may not need user interaction.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
F-secure F-Secure SAFE 安全漏洞
Vulnerability Description
F-secure F-Secure SAFE是芬兰F-Secure(F-secure)公司的一套杀毒软件。 F-Secure SAFE browser存在安全漏洞,该漏洞源于带有 JavaScript 或 iFrame 中的 USSD 代码的恶意制作的网站可以从 F-Secure 浏览器触发拨号应用程序,攻击者可以利用该应用程序发送不需要的 USSD 消息或执行不需要的呼叫。
CVSS Information
N/A
Vulnerability Type
N/A