cvedb.io
CVE-2025-3859
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2025-04-30T17:15:50.903 · Last modified 2026-06-17T09:20:49.143

Summary

Websites directing users to long URLs that caused eliding to occur in the location view could leverage the truncating behavior to potentially trick users into thinking they were on a different webpage. This vulnerability was fixed in Focus 138.

Affected products

mozilla — firefox_focus

Does this affect you?

Add your gear to cvedb and we'll alert you only when mozilla ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.