Home

Description

Whale browser before 4.32.315.22 allow an attacker to bypass the Same-Origin Policy in a dual-tab environment.

PUBLISHED Reserved 2025-07-04 | Published 2025-07-04 | Updated 2025-07-08 | Assigner naver

Problem types

CWE-346 Origin Validation Error

Product status

Default status
affected

4.32.315.22
unaffected

Credits

Mingi Jung (UNIST WebSec), mingijung.grape@gmail.com, Ulsan National Institute of Science and Technology Web Sec Lab finder

References

cve.naver.com/detail/cve-2025-53600.html (NAVER Security Advisory) vendor-advisory

cve.org (CVE-2025-53600)

nvd.nist.gov (CVE-2025-53600)

Download JSON