VYPR
Medium severity6.1NVD Advisory· Published Apr 30, 2025· Updated Apr 13, 2026

CVE-2025-3859

CVE-2025-3859

Description

Websites directing users to long URLs that caused eliding to occur in the location view could leverage the truncating behavior to potentially trick users into thinking they were on a different webpage. This vulnerability was fixed in Focus 138.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:mozilla:firefox_focus:*:*:*:*:*:iphone_os:*:*+ 1 more
    • cpe:2.3:a:mozilla:firefox_focus:*:*:*:*:*:iphone_os:*:*range: <138.0
    • (no CPE)range: < 138

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.