CVE-2023-29534: Different techniques existed to obscure the fullscreen notification in Firefox and Focus for Android. These could have led to potential user...

0.0 CVSS

Description

Different techniques existed to obscure the fullscreen notification in Firefox and Focus for Android. These could have led to potential user confusion and spoofing attacks.

*This bug only affects Firefox and Focus for Android. Other versions of Firefox are unaffected.* This vulnerability affects Firefox for Android < 112 and Focus for Android < 112.

Classification

CVE ID: CVE-2023-29534

CVSS Base Severity: LOW

CVSS Base Score: 0.0

Affected Products

Vendor: Mozilla

Product: Firefox for Android

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.38% (probability of being exploited)

EPSS Percentile: 72.83% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1816007
https://bugzilla.mozilla.org/show_bug.cgi?id=1816059
https://bugzilla.mozilla.org/show_bug.cgi?id=1821155
https://bugzilla.mozilla.org/show_bug.cgi?id=1821576
https://bugzilla.mozilla.org/show_bug.cgi?id=1821906
https://bugzilla.mozilla.org/show_bug.cgi?id=1822298
https://bugzilla.mozilla.org/show_bug.cgi?id=1822305
https://www.mozilla.org/security/advisories/mfsa2023-13/

Timeline

2024-12-12 00:30:35 UTC
CVE

Different techniques existed to obscure the fullscreen notification in Firefox and Focus for Android. These could have led to potential user...