Known Vulnerabilities for products from Brave
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Brave".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-35183 json | Not Provided | 2026-04-06 | 2026-04-07 | |
| CVE-2026-35182 json | Not Provided | 2026-04-06 | 2026-04-07 | |
| CVE-2026-35164 json | Not Provided | 2026-04-06 | 2026-04-07 | |
| CVE-2026-35047 json | Not Provided | 2026-04-06 | 2026-04-07 | |
| CVE-2025-68508 json | Not Provided | 2025-12-24 | 2026-04-23 | |
| CVE-2024-35655 json | Not Provided | 2024-06-04 | 2026-04-23 | |
| CVE-2023-28364 json | An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navig... | 6.1 - MEDIUM | 2023-07-01 | 2023-07-10 |
| CVE-2023-28360 json | An omission of security-relevant information vulnerability exists in Brave desktop prior to version 1.48.171 when a user was ... | 4.3 - MEDIUM | 2023-05-11 | 2023-05-22 |
| CVE-2023-22798 json | Prior to commit 51867e0d15a6d7f80d5b714fd0e9976b9c160bb0, https://github.com/brave/adblock-lists removed redirect interceptor... | 6.1 - MEDIUM | 2023-02-09 | 2023-02-17 |
| CVE-2022-47934 json | Brave Browser before 1.43.88 allowed a remote attacker to cause a denial of service in private and guest windows via a crafte... | 6.5 - MEDIUM | 2022-12-24 | 2022-12-30 |
| CVE-2022-47933 json | Brave Browser before 1.42.51 allowed a remote attacker to cause a denial of service via a crafted HTML file that references t... | 6.5 - MEDIUM | 2022-12-24 | 2023-08-08 |
| CVE-2022-47932 json | Brave Browser before 1.43.34 allowed a remote attacker to cause a denial of service via a crafted HTML file that mentions an ... | 6.5 - MEDIUM | 2022-12-24 | 2022-12-30 |
| CVE-2022-30334 json | Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE... | 5.3 - MEDIUM | 2022-05-07 | 2023-08-08 |
| CVE-2021-45884 json | In Brave Desktop 1.17 through 1.33 before 1.33.106, when CNAME-based adblocking and a proxying extension with a SOCKS fallbac... | 7.5 - HIGH | 2021-12-27 | 2022-01-07 |
| CVE-2021-22929 json | An information disclosure exists in Brave Browser Desktop prior to version 1.28.62, where logged warning messages that includ... | 6.1 - MEDIUM | 2021-08-31 | 2021-09-10 |
| CVE-2021-22917 json | Brave Browser Desktop between versions 1.17 and 1.20 is vulnerable to information disclosure by way of DNS requests in Tor wi... | 6.5 - MEDIUM | 2021-07-12 | 2022-08-30 |
| CVE-2021-22916 json | In Brave Desktop between versions 1.17 and 1.26.60, when adblocking is enabled and a proxy browser extension is installed, th... | 5.9 - MEDIUM | 2021-07-12 | 2022-08-30 |
| CVE-2021-21323 json | Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblo... | 5.3 - MEDIUM | 2021-02-23 | 2021-03-01 |
| CVE-2020-8276 json | The implementation of Brave Desktop's privacy-preserving analytics system (P3A) between 1.1 and 1.18.35 logged the timestamp ... | 5.5 - MEDIUM | 2020-11-09 | 2020-11-18 |
| CVE-2018-1000815 json | Brave Software Inc. Brave version version 0.22.810 to 0.24.0 contains a Other/Unknown vulnerability in function ContentSettin... | 4.3 - MEDIUM | 2018-12-20 | 2019-02-06 |