Same-Origin Policy Bypass Vulnerability in Whale Browser
CVE-2025-62584

Currently unrated

Key Information:

Vendor

Naver

Status
Naver Whale Browser
Vendor
CVE Published:
16 October 2025

What is CVE-2025-62584?

A vulnerability in Whale browser allows attackers to bypass the Same-Origin Policy in a dual-tab environment. This flaw can enable unauthorized access to potentially sensitive data by leveraging the browser's functionalities in a way that exposes users to risks they might not be aware of. Users are advised to update to the latest version to mitigate this vulnerability and protect their information.

Affected Version(s)

NAVER Whale browser 4.33.325.17

References

https://cve.naver.com/detail/cve-2025-62584.html
vendor-advisory

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Mingi Jung, [email protected], Ulsan National Institute of Science and Technology-Web Sec Lab
JSON
.
CVE-2025-62584 : Same-Origin Policy Bypass Vulnerability in Whale Browser