Primary

Context

Mozilla Firefox for iOS Right-to-Left Domain Rendering Vulnerability

Vulnerability

Patched

A vulnerability in Firefox for iOS has been identified, where the link preview feature incorrectly displayed right-to-left (RTL) and internationalized domain names (IDNs). This flaw allowed a crafted RTL hostname to visually manipulate the domain presentation, making attacker-controlled sites appear as trusted sources. The issue affects Firefox for iOS versions prior to 151.1.

Impact

Exploitation of this vulnerability could lead to phishing attacks, as it allows malicious websites to be misrepresented as legitimate by manipulating how their URLs are displayed.

Remediation

Users can update to Firefox for iOS version 151.1 to address this vulnerability.

Added: May 26, 2026, 7:15 PM

Updated: May 26, 2026, 7:15 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.2

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.2

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mozilla Firefox for iOS Right-to-Left Domain Rendering Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Mozilla Firefox

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating