CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32575 matches found

SUSE CVE•added 2025/10/16 11:38 p.m.•1 views

SUSE CVE-2025-11720

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

8.1CVSS5.7AI score0.00047EPSS

Exploits0References3

RedhatCVE•added 2025/10/15 12:42 p.m.•2 views

CVE-2025-11717

When switching between Android apps using the card carousel Firefox shows a black screen as its card image when a password-related screen was the last one being used. Prior to Firefox 144 the password edit screen was visible. This vulnerability was fixed in Firefox 144...

9.1CVSS5.8AI score0.00047EPSS

Exploits0References1

AlpineLinux•added 2025/10/14 1:15 p.m.•3 views

CVE-2025-11718

When the address bar was hidden due to scrolling on Android, a malicious page could create a fake address bar to fool the user in response to a visibilitychange event This vulnerability affects Firefox 144...

6.5CVSS6AI score0.00027EPSS

Exploits0References2

NVD•added 2025/10/14 1:15 p.m.•1 views

CVE-2025-11718

When the address bar was hidden due to scrolling on Android, a malicious page could create a fake address bar to fool the user in response to a visibilitychange event. This vulnerability was fixed in Firefox 144...

6.5CVSS0.00027EPSS

Exploits0References2

OSV•added 2025/10/14 1:15 p.m.•1 views

CVE-2025-11718

6.5CVSS5.8AI score0.00027EPSS

Exploits0References2

OSV•added 2025/10/14 1:15 p.m.•1 views

UBUNTU-CVE-2025-11720

8.1CVSS5.8AI score0.00047EPSS

Exploits0References6

Vulnrichment•added 2025/10/14 12:27 p.m.•1 views

CVE-2025-11720 Spoofing risk in Android custom tabs

5.7AI score0.00047EPSS

Exploits0References3

Cvelist•added 2025/10/14 12:27 p.m.•5 views

CVE-2025-11720 Spoofing risk in Android custom tabs

0.00047EPSS

Exploits0References3

Cvelist•added 2025/10/14 12:27 p.m.•4 views

CVE-2025-11717 The password edit screen was not hidden in Android card view

0.00047EPSS

Exploits0References2

Vulnrichment•added 2025/10/14 12:27 p.m.•2 views

CVE-2025-11717 The password edit screen was not hidden in Android card view

5.8AI score0.00047EPSS

Exploits0References2

ATTACKERKB•added 2025/10/14 12:27 p.m.•1 views

CVE-2025-11718

6.5CVSS5.8AI score0.00027EPSS

Exploits0References3

Debian CVE•added 2025/10/14 12:27 p.m.•6 views

CVE-2025-11718

6.5CVSS5.2AI score0.00027EPSS

Exploits0

Debian CVE•added 2025/10/14 12:27 p.m.•4 views

CVE-2025-11717

9.1CVSS5.2AI score0.00047EPSS

Exploits0

Debian CVE•added 2025/10/14 12:27 p.m.•4 views

CVE-2025-11716

Links in a sandboxed iframe could open an external app on Android without the required "allow-" permission. This vulnerability was fixed in Firefox 144 and Thunderbird 144...

6.5CVSS5.2AI score0.00029EPSS

Exploits0

Positive Technologies•added 2025/10/14 12:0 a.m.•3 views

PT-2025-41906

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 144 Description A malicious webpage could create a fake address bar to deceive users when the address bar was hidden due to scrolling on Android devices. This occurred in response to a visibilitychange event...

6.5AI score0.00027EPSS

Exploits0References4

Positive Technologies•added 2025/10/14 12:0 a.m.•2 views

PT-2025-41908

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 144 Firefox Focus versions prior to 144 Description The user interface for the Android custom tab feature in Firefox and Firefox Focus displayed only the "site" loaded, and not the complete hostname. This allowed...

9.8CVSS5.8AI score0.00106EPSS

Exploits0References28