Medium severity6.1NVD Advisory· Published Aug 19, 2025· Updated Apr 13, 2026
CVE-2025-55033
CVE-2025-55033
Description
Dragging JavaScript links to the URL bar in Focus for iOS could be utilized to run malicious scripts, potentially resulting in XSS attacks. This vulnerability was fixed in Focus for iOS 142.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:mozilla:firefox_focus:*:*:*:*:*:iphone_os:*:*Range: <142.0
- Range: <142
Patches
Vulnerability mechanics
References
2- www.mozilla.org/security/advisories/mfsa2025-69/nvdVendor Advisory
- bugzilla.mozilla.org/show_bug.cginvdIssue TrackingPermissions Required
News mentions
0No linked articles in our index yet.