{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T15:31:00.758","vulnerabilities":[{"cve":{"id":"CVE-2025-23108","sourceIdentifier":"security@mozilla.org","published":"2025-01-11T04:15:06.280","lastModified":"2026-04-13T15:16:54.423","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Opening Javascript links in a new tab via long-press in the Firefox iOS client could result in a malicious script spoofing the URL of the new tab. This vulnerability was fixed in Firefox for iOS 134."},{"lang":"es","value":"Abrir enlaces de Javascript en una nueva pestaña manteniendo pulsada la tecla en el cliente iOS de Firefox podría provocar que un script malicioso falsifique la URL de la nueva pestaña. Esta vulnerabilidad afecta a Firefox para iOS < 134."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:iphone_os:*:*","versionEndExcluding":"134.0","matchCriteriaId":"287CBA5C-D765-4028-A3EE-44AE2589E99E"}]}]}],"references":[{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1933172","source":"security@mozilla.org","tags":["Issue Tracking","Permissions Required"]},{"url":"https://www.mozilla.org/security/advisories/mfsa2025-06/","source":"security@mozilla.org","tags":["Vendor Advisory"]}]}}]}