GCVE - cpe:2.3:a:mozilla:focus:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:mozilla:focus:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Mozilla (`be1b0d4e-21a7-5a25-9982-bbda6ef43ec1`)
Product	Focus (`561fc0a1-22ba-5c72-bb77-a3776a7f3de5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-3859`	not_vulnerable	2026-06-03 15:01:05.794505	Firefox Focus elide URL allows address bar spoofing Websites directing users to long URLs that caused eliding to occur in the location view could leverage the truncating behavior to potentially trick users into thinking they were on a different webpage. This vulnerability was fixed in Focus 138. Published: 2025-04-30T16:30:18.670Z Updated: 2026-04-13T14:28:36.100Z Open on db.gcve.eu Reference links https://bugzilla.mozilla.org/show_bug.cgi?id=1951533 https://www.mozilla.org/security/advisories/mfsa2025-33/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-26486`	vulnerable	2026-06-03 14:46:43.244599	Details available An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escape. We have had reports of attacks in the wild abusing this flaw. This vulnerability affects Firefox < 97.0.2, Firefox ESR < 91.6.1, Firefox for Android < 97.3.0, Thunderbird < 91.6.2, and Focus < 97.3.0. Published: 2022-12-22T00:00:00.000Z Updated: 2025-10-21T23:15:29.274Z Open on db.gcve.eu Reference links https://www.mozilla.org/security/advisories/mfsa2022-09/ https://bugzilla.mozilla.org/show_bug.cgi?id=1758070	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-26485`	vulnerable	2026-06-03 14:46:43.240758	Details available Removing an XSLT parameter during processing could have lead to an exploitable use-after-free. We have had reports of attacks in the wild abusing this flaw. This vulnerability affects Firefox < 97.0.2, Firefox ESR < 91.6.1, Firefox for Android < 97.3.0, Thunderbird < 91.6.2, and Focus < 97.3.0. Published: 2022-12-22T00:00:00.000Z Updated: 2025-10-21T23:15:29.432Z Open on db.gcve.eu Reference links https://www.mozilla.org/security/advisories/mfsa2022-09/ https://bugzilla.mozilla.org/show_bug.cgi?id=1758062	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.