Security Advisory

CVE-2025-6431

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-24 12:28:03

Last updated 2026-04-13 14:31:05

Assigner mozilla

State PUBLISHED

Description

When a link can be opened in an external application, Firefox for Android will, by default, prompt the user before doing so. An attacker could have bypassed this prompt, potentially exposing the user to security vulnerabilities or privacy leaks in external applications. *This bug only affects Firefox for Android. Other versions of Firefox are unaffected.*. This vulnerability was fixed in Firefox 140.

← Browse all CVEs View on cve.org ↗