Primary

Context

ArcSearch for Android Address Bar Spoofing Vulnerability

Vulnerability

A vulnerability in ArcSearch for Android, affecting versions prior to 1.12.6, could lead to address bar spoofing. The issue arises because the browser might display a different domain in the address bar than the content being shown. This discrepancy can create a spoofing risk after user interaction with crafted web content.

Impact

Exploitation of this vulnerability could mislead users about the authenticity of the website they are viewing, potentially leading to phishing or other malicious activities.

Remediation

Users are advised to update ArcSearch on Android to version 1.12.6 or newer, which includes the necessary fix.

Added: Mar 20, 2026, 10:23 PM

Updated: Mar 20, 2026, 10:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

4.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

4.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ArcSearch for Android Address Bar Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating