CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-23109: Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address This vulnerability affects Firefox...

Description

Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address This vulnerability affects Firefox for iOS < 134.

Classification

CVE ID: CVE-2025-23109

Affected Products

Vendor: Mozilla

Product: Firefox for iOS

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.47% (scored less or equal to compared to others)

EPSS Date: 2025-02-09 (when was this score calculated)

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1419275
https://www.mozilla.org/security/advisories/mfsa2025-06/

Timeline

2025-01-12 00:30:45 UTC
CVE

Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address This vulnerability affects Firefox...