Security Advisory

CVE-2026-2032

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-16 14:13:23

Last updated 2026-04-14 15:09:28

Assigner mozilla

State PUBLISHED

Description

Malicious scripts that interrupt new tab page loading could cause desynchronization between the address bar and page content, allowing the attacker to spoof arbitrary HTML under a trusted domain. This vulnerability was fixed in Firefox for iOS 147.2.1.

← Browse all CVEs View on cve.org ↗