VDB

CESS-2025-1940

CESS-2025-1940 PUBLISHED CVSS 7.1 HIGH

A select option could partially obscure the confirmation prompt shown before launching external apps. This could be used to trick a user in to launching an external app unexpectedly. *This issue only affects Android versions of Firefox.*. This vulnerability was fixed in Firefox 136.

Risk Scores

CVSS 3.1
7.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N

Timeline

  • Mar 4, 2025 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›