Primary

Context

ArcSearch for Android Address Bar Spoofing Vulnerability

Vulnerability

A vulnerability in ArcSearch for Android, affecting versions prior to 1.12.6, could lead to address bar spoofing. The issue arises because the browser might display a different domain in the address bar than the actual content being viewed. This discrepancy can create a spoofing risk after user interaction with specially crafted web content.

Impact

Exploitation of this vulnerability could mislead users about the authenticity of the website they are visiting, potentially leading to phishing or other malicious activities.

Remediation

Users are advised to update ArcSearch for Android to version 1.12.6 or later, as this version includes the necessary fix.

Added: Dec 19, 2025, 5:29 PM

Updated: Dec 19, 2025, 6:12 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

1.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

1.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ArcSearch for Android Address Bar Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating