Vulnerabilities > Mozilla > Firefox Focus > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-22 | CVE-2024-0606 | Cross-site Scripting vulnerability in Mozilla Firefox Focus An attacker could execute unauthorized script on a legitimate site through UXSS using window.open() by opening a javascript URI leading to unauthorized actions within the user's loaded webpage. | 6.1 |
| 2023-12-19 | CVE-2023-6870 | Unspecified vulnerability in Mozilla Firefox Applications which spawn a Toast notification in a background thread may have obscured fullscreen notifications displayed by Firefox. | 4.3 |
| 2023-06-19 | CVE-2023-29546 | Unspecified vulnerability in Mozilla Firefox and Firefox Focus When recording the screen while in Private Browsing on Firefox for Android the address bar and keyboard were not hidden, potentially leaking sensitive information. | 6.5 |