URL Scheme Vulnerability in Firefox for iOS
CVE-2025-54144

5.4MEDIUM

Key Information:

Vendor: Mozilla
Status: Firefox For iOS
Vendor: CVE Published:; 19 August 2025

What is CVE-2025-54144?

The vulnerability arises from the URL scheme utilized by Firefox, which may be exploited to redirect users to unintended webpages. If a user is fooled into clicking a malicious link, attackers could potentially gain access to internal pages or other arbitrary websites. This issue specifically affects versions of Firefox for iOS below 141, emphasizing the importance of keeping applications updated to mitigate such risks.

Affected Version(s)

Firefox for iOS < 141

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1946062

https://www.mozilla.org/security/advisories/mfsa2025-60/

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2025
Vulnerability Reserved
Jul 17, 2025

Credit

James Lee