| Title |
Assessing browser security: a detailed study based on CVE metrics / |
| Authors |
Chalyi, Oleksii ; Driaunys, Kęstutis ; Rudžionis, Vytautas Evaldas |
| DOI |
10.3390/fi17030104 |
| Full Text |
|
| Is Part of |
Future internet.. Basel : MDPI. 2025, vol. 17, iss. 3, art. no. 104, p. [1-15].. eISSN 1999-5903 |
| Keywords [eng] |
browser threats ; CVE ; CVSS ; EPSS ; information security ; risk ; vulnerabilities |
| Abstract [eng] |
This study systematically evaluates the vulnerabilities of modern web browsers using developed indices derived from the CVE database, including ICVE, ICVSS, IR and IT. These indices incorporate metrics such as vulnerability severity and risks, along with browser popularity, to enable a balanced comparison of browser security. The results highlight significant differences in browser security: while Google Chrome and Samsung Internet exhibited lower threat indices, Mozilla Firefox demonstrated consistently higher scores, indicating greater exposure to risks. These observations a slightly contradict widespread opinion. The findings emphasize the importance of timely software updates in mitigating vulnerabilities, as many incidents were linked to outdated browser versions. This study also introduces a robust methodology for assessing browser threats, providing a framework for future research. Potential applications include developing browser-based penetration testing systems to simulate phishing and data extraction scenarios, offering insights into user-specific risks and broader organizational impacts. By combining theoretical analysis with practical implications, this work contributes to advancing browser security and lays the foundation for future applied research in cybersecurity. |
| Published |
Basel : MDPI |
| Type |
Journal article |
| Language |
English |
| Publication date |
2025 |
| CC license |
|
