CVE-2025-0244

Medium

When redirecting to an invalid protocol scheme, an attacker could spoof the address bar. *Note: This issue only affected Android operating…

mozilla·CWE-601·Published 2025-01-07

CVSS

5.3

EPSS

0.07

KEV

Exploits

cve.orgen

235 chars

When redirecting to an invalid protocol scheme, an attacker could spoof the address bar. *Note: This issue only affected Android operating systems. Other operating systems are unaffected.*. This vulnerability was fixed in Firefox 134.

NVDen

235 chars

NVDes

267 chars

Al redirigir a un esquema de protocolo no válido, un atacante podría falsificar la barra de direcciones. *Nota: este problema solo afecta a los sistemas operativos Android. Otros sistemas operativos no se ven afectados.* Esta vulnerabilidad afecta a Firefox < 134.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	5.3	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
3.1	Primary	cve.org	5.3	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N