CVE-2023-25743

CVSS v3.1 7.5 (High)

EPSS 0.09 % (38^th)

Affected Products 1

Advisories 26

A lack of in app notification for entering fullscreen mode could have lead to a malicious website spoofing browser chrome.<br>This bug only affects Firefox Focus. Other versions of Firefox are unaffected.. This vulnerability affects Firefox < 110 and Firefox ESR < 102.8.

Weaknesses

CWE-290: Authentication Bypass by Spoofing

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2023-06-02 17:15:11
(15 months ago)
Updated Date: 2023-06-09 18:23:12
(15 months ago)

Affected Products

Mozilla

Firefox Focus

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox Focus	cpe:2.3:a:mozilla:firefox_focus:-