CVE-2023-28159
First published: Tue Mar 14 2023(Updated: )
The fullscreen notification could have been hidden on Firefox for Android by using download popups, resulting in potential user confusion or spoofing attacks. <br>*This bug only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox < 111.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <111 | 111 |
| <111 | 111 | |
| Mozilla Firefox | <111.0 | |
| Mozilla Firefox | <111.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-28159.
What is the affected software?
The affected software is Mozilla Firefox version up to and excluding 111 for Firefox for Android.
What is the severity of CVE-2023-28159?
CVE-2023-28159 has a severity level of high.
How does this vulnerability impact users?
This vulnerability could result in potential user confusion or spoofing attacks on Firefox for Android.
How can I fix CVE-2023-28159?
To fix CVE-2023-28159, update Firefox for Android to version 111 or later.
- collector/nvd-latest
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/mozilla-advisory
- source/Mozilla
- agent/software-canonical-lookup
- agent/severity
- agent/description
- agent/event
- agent/tags
- agent/author
- agent/references
- agent/software-canonical-lookup-request
- vendor/mozilla
- canonical/mozilla firefox