CVE-2023-25749

Summary

Android applications with unpatched vulnerabilities can be launched from a browser using Intents, exposing users to these vulnerabilities. Firefox will now confirm with users that they want to launch an external application before doing so. <br>This bug only affects Firefox for Android. Other versions of Firefox are unaffected.. This vulnerability affects Firefox < 111.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 111affected

Weaknesses

  • Firefox for Android may have opened third-party apps without a prompt

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References