5.6 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
79.2%
The unicode latin ‘kra’ character can be used to spoof a standard ‘k’ character in the addressbar. This allows for domain spoofing attacks as do not display as punycode text, allowing for user confusion. This vulnerability affects Firefox < 68.