Vulnerabilities > CVE-2023-25748 - Unspecified vulnerability in Mozilla Firefox

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

mozilla

NVD

Published: 2023-06-02

Updated: 2023-06-08

Summary

By displaying a prompt with a long description, the fullscreen notification could have been hidden, resulting in potential user confusion or spoofing attacks. <br>*This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 111.

Vulnerable Configurations

Part	Description	Count
Application	Mozilla Mozilla Firefox 80.0 Mozilla Firefox 83.0 Mozilla Firefox 84.0 Mozilla Firefox 84.1.3 Mozilla Firefox 92.0 Mozilla Firefox 104.0	6

References

https://www.mozilla.org/security/advisories/mfsa2023-09/
https://bugzilla.mozilla.org/show_bug.cgi?id=1798798