CVE-2025-5020
Links using non-HTTP schemes opened from other apps such as Safari could have allowed spoofing of website addresses
Opening maliciously-crafted URLs in Firefox from other apps such as Safari could have allowed attackers to spoof website addresses if the URLs utilized non-HTTP schemes used internally by the Firefox iOS client. This vulnerability was fixed in Firefox for iOS 139.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Productos afectados
Mozilla · Firefox for iOS¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →