VDB
CVE-2025-9186
CVE-2025-9186
PUBLISHED
CVSS 6.5 MEDIUM
Spoofing issue in the Address Bar component of Firefox Focus for Android. This vulnerability was fixed in Firefox 142.
EPSS 0.05% · 16.9th percentile
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS Score
0.05%
16.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mozilla | firefox | 0 |
| Mozilla | Firefox | 142 |
Exploit Intelligence
- CIRCL seen: CVE-2025-9186 (circl-sighting)
- CIRCL seen: CVE-2025-9186 (circl-sighting)
- https://bugzilla.mozilla.org/show_bug.cgi?id=1445758 (circl)
- https://www.mozilla.org/security/advisories/mfsa2025-64/ (circl)
Timeline
- Aug 19, 2025 CVE Published
- Aug 20, 2025 EPSS Score
- Aug 28, 2025 EPSS Score
- Sep 1, 2025 PoC Published
- Sep 2, 2025 PoC Published
- Sep 5, 2025 EPSS Score
- Sep 13, 2025 EPSS Score
- Sep 21, 2025 EPSS Score
- Sep 29, 2025 EPSS Score
- Oct 7, 2025 EPSS Score
- Oct 15, 2025 EPSS Score
- Oct 23, 2025 EPSS Score