Search for vulnerabilities
| Vulnerability ID | VCID-ka8e-eu8a-yua2 |
| Aliases |
CVE-2014-1527
|
| Summary | Security researcher Juho Nurminen reported that on Firefox for Android, when the addressbar has been scrolled off screen, an attacker can prevent it from rendering again through the use of script interacting DOM events. This allows an attacker to present a fake addressbar to the user, possibly leading to successful phishing attacks. |
| Status | Published |
| Exploitability | None |
| Weighted Severity | None |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| There are no known CWE. |
| Reference id | Reference type | URL |
|---|---|---|
| https://api.first.org/data/v1/epss?cve=CVE-2014-1527 | ||
| CVE-2014-1527 | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1527 | |
| mfsa2014-40 | https://www.mozilla.org/en-US/security/advisories/mfsa2014-40 |
| Percentile | 0.7478 |
| EPSS Score | 0.00846 |
| Published At | April 1, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-04-01T13:18:16.354403+00:00 | Mozilla Importer | Import | https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2014/mfsa2014-40.md | 38.0.0 |