CVE-2021-40834
User interface Spoofing in F-Secure SAFE browser for Android
More information
A user interface overlay vulnerability was discovered in Safe Browser for Android. When user click on a specially crafted seemingly legitimate URL safe browser goes into full screen and hides the user interface. A remote attacker can leverage this to perform spoofing attack.
This issue was reported to WithSecure through the Vulnerability Reward Program. No known exploit or attack has been seen in the wild.
Contributors
WithSecure Corporation would like to thank following person for bringing this issue to our attention.