Same-Origin Policy Bypass in Whale Browser by Whale
CVE-2025-53600

Currently unrated

Key Information:

Vendor: Naver
Status: Naver Whale Browser
Vendor: CVE Published:; 4 July 2025

What is CVE-2025-53600?

A vulnerability in Whale Browser prior to version 4.32.315.22 allows attackers to bypass the Same-Origin Policy when using the browser in a dual-tab environment. This could potentially enable unauthorized access to sensitive data across different origins, compromising the security and privacy of users. Ensuring users upgrade to the latest version is critical to maintain web security.

Affected Version(s)

NAVER Whale browser 4.32.315.22

References

https://cve.naver.com/detail/cve-2025-53600.html

vendor-advisory

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 4, 2025
Vulnerability Reserved
Jul 4, 2025

Credit

Mingi Jung (UNIST WebSec), [email protected], Ulsan National Institute of Science and Technology Web Sec Lab

Naver

What is CVE-2025-53600?

Affected Version(s)

References

Timeline

Credit