Same-Origin Policy Bypass in Whale Browser by Whale
CVE-2025-53600

7.5HIGH

Key Information:

Vendor: Naver
Status: Naver Whale Browser
Vendor: CVE Published:; 4 July 2025

What is CVE-2025-53600?

A vulnerability in Whale Browser prior to version 4.32.315.22 allows attackers to bypass the Same-Origin Policy when using the browser in a dual-tab environment. This could potentially enable unauthorized access to sensitive data across different origins, compromising the security and privacy of users. Ensuring users upgrade to the latest version is critical to maintain web security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

NAVER Whale browser 4.32.315.22

References

https://cve.naver.com/detail/cve-2025-53600.html

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 4, 2025
Vulnerability Reserved
Jul 4, 2025

Credit

Mingi Jung (UNIST WebSec), mingijung.grape@gmail.com, Ulsan National Institute of Science and Technology Web Sec Lab

JSON

Naver

What is CVE-2025-53600?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.