CVE-2025-8041

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-8041
In the address bar, Firefox for Android truncated the display of URLs from the end instead of prioritizing the origin. This vulnerability was fixed in Firefox 141.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://bugzilla.mozilla.org/show_bug.cgi?id=1670725 Issue Tracking Permissions Required
https://www.mozilla.org/security/advisories/mfsa2025-56/ Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=1670725 Issue Tracking Permissions Required
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
History

13 Apr 2026, 15:17

Type Values Removed Values Added
Summary (en) In the address bar, Firefox for Android truncated the display of URLs from the end instead of prioritizing the origin. This vulnerability affects Firefox < 141. (en) In the address bar, Firefox for Android truncated the display of URLs from the end instead of prioritizing the origin. This vulnerability was fixed in Firefox 141.

19 Sep 2025, 16:56

Type Values Removed Values Added
References () https://bugzilla.mozilla.org/show_bug.cgi?id=1670725 - () https://bugzilla.mozilla.org/show_bug.cgi?id=1670725 - Issue Tracking, Permissions Required
References () https://www.mozilla.org/security/advisories/mfsa2025-56/ - () https://www.mozilla.org/security/advisories/mfsa2025-56/ - Vendor Advisory
First Time Google
Google android
Mozilla firefox
Mozilla
CPE cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

20 Aug 2025, 16:15

Type Values Removed Values Added
CWE CWE-451
References () https://bugzilla.mozilla.org/show_bug.cgi?id=1670725 - () https://bugzilla.mozilla.org/show_bug.cgi?id=1670725 -
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.3

20 Aug 2025, 14:39

Type Values Removed Values Added
Summary
  • (es) En la barra de direcciones, Firefox para Android truncaba la visualización de las URL desde el final en lugar de priorizar el origen. Esta vulnerabilidad afecta a Firefox anterior a la versión 141.

19 Aug 2025, 21:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-08-19 21:15

Updated : 2026-04-13 15:17

NVD link : CVE-2025-8041

Mitre link : CVE-2025-8041

CVE.ORG link : CVE-2025-8041

JSON object : View

Products Affected

google

  • android

mozilla

  • firefox
CWE
CWE-451

User Interface (UI) Misrepresentation of Critical Information