Brave Browser before 0.13.0 allows remote attackers to cause a denial of service (resource consumption) via a long alert() argument in JavaScript code, because window dialogs are mishandled.
References
Link | Resource |
---|---|
https://hackerone.com/reports/176066 | Exploit Third Party Advisory |
https://www.exploit-db.com/exploits/44474/ | Exploit Third Party Advisory VDB Entry |
Configurations
Information
Published : 2018-04-03 19:29
Updated : 2019-10-02 17:03
NVD link : CVE-2017-18256
Mitre link : CVE-2017-18256
JSON object : View
CWE
Products Affected
brave
- brave_browser