← volver
CVE-2025-55029

Malicious scripts could spam popups for denial of service attacks

CVSS 7.5 HIGHEPSS 0.3%CWE-400
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.5EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
19 ago 2025Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Malicious scripts could bypass the popup blocker to spam new tabs, potentially resulting in denial of service attacks. This vulnerability was fixed in Firefox for iOS 142.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Productos afectados
Mozilla · Firefox for iOS