CVEs-PoC/2020/CVE-2020-6827.md

### [CVE-2020-6827](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6827)
![](https://img.shields.io/static/v1?label=Product&message=Firefox%20ESR&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2068.7%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Custom%20Tabs%20in%20Firefox%20for%20Android%20could%20have%20the%20URI%20spoofed&color=brighgreen)

### Description

When following a link that opened an intent://-schemed URL, causing a custom tab to be opened, Firefox for Android could be tricked into displaying the incorrect URI. <br> *Note: This issue only affects Firefox for Android. Other operating systems are unaffected.*. This vulnerability affects Firefox ESR < 68.7.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/seungminaaa/seungminaaa.github.io