CNNVD-202510-2017 Information
CNNVD ID
CNNVD-202510-2017
Related CVE
- CNNVD Published: 2025-10-14
Description (Chinese)
Mozilla Firefox和Mozilla Firefox Focus都是美国Mozilla基金会的产品。Mozilla Firefox是一款开源Web浏览器。Mozilla Firefox Focus是一个供iOS设备专用的浏览器。 Mozilla Firefox和Mozilla Firefox Focus 144之前版本存在安全漏洞,该漏洞源于Android自定义标签功能仅显示加载的站点而非完整主机名,可能导致用户误判子域名内容来源。
Description (English)
Mozilla Firefox and Mozilla Firefox Focus are products of the Mozilla Foundation in the United States. Mozilla Firefox is an open-source Web browser. Mozilla Firefox Focus is a browser for iOS equipment. The previous version of Mozilla Firefox and Mozilla Firefox Focus 144 had a security loophole, which stemmed from the fact that the self-defined Android label function showed only the loaded site and not the full host name, which could lead to the error of the user ’ s source of sub-domain name content.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mozilla
Published
2025-10-14
Last Modified
2026-02-24
References
https://bugzilla.mozilla.org/show_bug.cgi?id=1979534 https://bugzilla.mozilla.org/show_bug.cgi?id=1984370 https://www.mozilla.org/security/advisories/mfsa2025-81/ https://access.redhat.com/security/cve/cve-2025-11720
Share on: