CVE-2026-2378

High CVSS: 7.4

ArcSearch for Android versions prior to 1.12.7 could display a different domain in the address bar than the content being shown, enabling address bar spoofing after user interaction via crafted web content.

Vendor

Product

CWE

CWE-1021

Yayın Tarihi

2026-03-20 22:16:27

Güncelleme

2026-03-23 14:32:02

Source Identifier

59469e6c-7ea7-446f-8e43-06aa32c115e8

KEV Date Added

Kategoriler

CWE-1021 HIGH 2026

Referanslar

https://arc.net/security/bulletins