{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-11T13:20:16.375","vulnerabilities":[{"cve":{"id":"CVE-2025-55033","sourceIdentifier":"security@mozilla.org","published":"2025-08-19T21:15:28.617","lastModified":"2026-04-13T15:17:03.177","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Dragging JavaScript links to the URL bar in Focus for iOS could be utilized to run malicious scripts, potentially resulting in XSS attacks. This vulnerability was fixed in Focus for iOS 142."},{"lang":"es","value":"Arrastrar enlaces de JavaScript a la barra de URL en Focus para iOS podría utilizarse para ejecutar scripts maliciosos, lo que podría provocar ataques XSS. Esta vulnerabilidad afecta a Focus para iOS < 142."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox_focus:*:*:*:*:*:iphone_os:*:*","versionEndExcluding":"142.0","matchCriteriaId":"667BB2C7-17E5-4D04-AA9A-1CBE726492AF"}]}]}],"references":[{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1913825","source":"security@mozilla.org","tags":["Issue Tracking","Permissions Required"]},{"url":"https://www.mozilla.org/security/advisories/mfsa2025-69/","source":"security@mozilla.org","tags":["Vendor Advisory"]}]}}]}