CVE-2025-11716

Опубликовано: 14 окт. 2025

Источник: debian

EPSS Низкий

Описание

Links in a sandboxed iframe could open an external app on Android without the required "allow-" permission. This vulnerability affects Firefox < 144 and Thunderbird < 144.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
firefox	not-affected			package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2025-81/#CVE-2025-11716

EPSS

Процентиль: 10%

0.00035

Низкий

Связанные уязвимости

CVE-2025-11716

CVSS3: 6.5

ubuntu

4 месяца назад

Links in a sandboxed iframe could open an external app on Android without the required "allow-" permission. This vulnerability affects Firefox < 144 and Thunderbird < 144.

CVE-2025-11716

CVSS3: 6.5

nvd

4 месяца назад

Links in a sandboxed iframe could open an external app on Android without the required "allow-" permission. This vulnerability affects Firefox < 144 and Thunderbird < 144.

GHSA-p8g8-q63w-8jgm

CVSS3: 6.5

github

4 месяца назад

Links in a sandboxed iframe could open an external app on Android without the required "allow-" permission. This vulnerability affects Firefox < 144 and Thunderbird < 144.

EPSS

Процентиль: 10%

0.00035

Низкий