Primary

Context

Mozilla Firefox for iOS Open-Text URL Scheme Vulnerability via QR Code Scanner

Vulnerability

A vulnerability exists in Firefox for iOS versions prior to 141, where the QR code scanner could be exploited to open arbitrary websites. This issue arises from the open-text URL scheme used by Firefox, which could be leveraged to redirect users to malicious links if they were tricked into scanning a QR code containing such a link.

Impact

Exploitation of this vulnerability could lead to users being redirected to arbitrary websites, potentially including malicious sites.

Remediation

Users can update to Firefox for iOS version 141 or later to address this vulnerability.

Added: Aug 19, 2025, 9:34 PM

Updated: Aug 19, 2025, 9:34 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mozilla Firefox for iOS Open-Text URL Scheme Vulnerability via QR Code Scanner

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating