Open Redirect Vulnerability in Brave Browser Android QR Scanner

Open Redirect Vulnerability in Brave Browser Android QR Scanner

CVE-2023-28364 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL.

Learn more about our Cis Benchmark Audit For Google Android.