CNNVD-202510-4412 Information

CNNVD ID

CNNVD-202510-4412

Related CVE

CVE-2025-48980

• CNNVD Published: 2025-10-31

Description (Chinese)

Brave Browser Desktop是美国Brave公司的一个桌面浏览器。 Brave Browser Desktop 1.83.10之前版本存在安全漏洞，该漏洞源于启用分屏视图功能时Open Link in Split View上下文菜单项未遵循SameSite cookie属性，可能导致跨站导航发送SameSite=Strict cookies。

Description (English)

Brave Browner Desktop is a desktop browser for the United States company Brave. The previous version of Brave Browner Desktop 1.83.10 had a security loophole, which resulted from the fact that the context menu item Open Link in Split View did not follow the SameSite cookie properties when the split screen view function was enabled, which could result in the cross-station navigation sending SameSite=Stricbooks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Brave

Published

2025-10-31

Last Modified

2026-02-24

References

https://hackerone.com/reports/3253725 https://access.redhat.com/security/cve/cve-2025-48980

Patch

https://brave.com/