CVE-2025-1940

Опубликовано: 04 мар. 2025

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

A select option could partially obscure the confirmation prompt shown before launching external apps. This could be used to trick a user in to launching an external app unexpectedly. This issue only affects Android versions of Firefox. This vulnerability affects Firefox < 136.

Ссылки

https://bugzilla.mozilla.org/show_bug.cgi?id=1908488
Issue Tracking
https://www.mozilla.org/security/advisories/mfsa2025-14/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

Версия до 136.0 (исключая)

EPSS

Процентиль: 27%

0.00097

Низкий

7.1 High

CVSS3

Дефекты

CWE-1021

Связанные уязвимости

CVE-2025-1940

CVSS3: 7.1

ubuntu

10 месяцев назад

A select option could partially obscure the confirmation prompt shown before launching external apps. This could be used to trick a user in to launching an external app unexpectedly. *This issue only affects Android versions of Firefox.* This vulnerability affects Firefox < 136.

CVE-2025-1940

CVSS3: 5.4

redhat

10 месяцев назад

A select option could partially obscure the confirmation prompt shown before launching external apps. This could be used to trick a user in to launching an external app unexpectedly. *This issue only affects Android versions of Firefox.* This vulnerability affects Firefox < 136.

CVE-2025-1940

CVSS3: 7.1

debian

10 месяцев назад

A select option could partially obscure the confirmation prompt shown ...

GHSA-gqx4-7r84-32m6

CVSS3: 7.1

github

10 месяцев назад

A select option could partially obscure the confirmation prompt shown before launching external apps. This could be used to trick a user in to launching an external app unexpectedly. *This issue only affects Android versions of Firefox.* This vulnerability affects Firefox < 136.

EPSS

Процентиль: 27%

0.00097

Низкий

7.1 High

CVSS3

Дефекты

CWE-1021