Fake Location URL Bar Vulnerability Affects Firefox for iOS

CVE-2024-38313

4.3MEDIUM

Key Information

Vendor
Mozilla
Status
Firefox For iOS
Vendor
CVE Published:
13 June 2024

Summary

In certain scenarios a malicious website could attempt to display a fake location URL bar which could mislead users as to the actual website address This vulnerability affects Firefox for iOS < 127.

Affected Version(s)

Firefox for iOS < 127

Refferences

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability Reserved

  • Vulnerability published

Collectors

NVD DatabaseMitre Database

Credit

Muneaki Nishimura
.