Popup Blocker Bypass Vulnerability in Firefox for iOS
CVE-2025-55029

7.5HIGH

Key Information:

Vendor: Mozilla
Status: Firefox For iOS
Vendor: CVE Published:; 19 August 2025

What is CVE-2025-55029?

A vulnerability in Firefox for iOS allows malicious scripts to circumvent the popup blocker, leading to an excessive opening of new tabs. This behavior can be exploited to create annoying user experiences or may facilitate denial of service attacks. The issue impacts versions of Firefox for iOS prior to 142, and users are encouraged to update their applications to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Firefox for iOS < 142

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1973577

https://www.mozilla.org/security/advisories/mfsa2025-68/

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2025
Vulnerability Reserved
Aug 5, 2025

Credit

Bharat

Mozilla

What is CVE-2025-55029?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit