216.73.217.172

CVE-2026-2032

· Published 16/02/2026 15:18 · Modified 17/02/2026 19:21

Labels: CVE-2026-2032 2026-02-16CVE-2026-2032CWE-290CWE-451[email protected]

Essential information

Published
16/02/2026 15:18
Modified
17/02/2026 19:21
Author
Creator
CVSS
4.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CVSS metrics

Description

Malicious scripts that interrupt new tab page loading could cause desynchronization between the address bar and page content, allowing the attacker to spoof arbitrary HTML under a trusted domain. This vulnerability affects Firefox for iOS < 147.2.1.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mozilla / firefox cpe:2.3:a:mozilla:firefox:<147.2.1:*:*:*:*:*:*:*

References