Description
Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs. This vulnerability was fixed in Firefox for iOS 143.1.
Published: 2025-09-30
Score: 4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Information Disclosure via Incognito Cookie Leakage
Action: Patch Now
AI Analysis

Impact

Cookies that belong to temporary non‑HTML documents created in private tabs were being stored in the same cookie jar that normal browsing uses. As a result, data entered or displayed in those private tabs, such as session tokens or user preferences, could be retrieved after the private tabs were closed. The flaw is a classic sensitive data exposure, identified as CWE‑359, and leads to confidentiality loss of any information that is stored in a cookie during a private session.

Affected Systems

Mozilla Firefox for iOS is affected; any installation earlier than version 143.1 contains the bug.

Risk and Exploitability

The CVSS score of 4 indicates low severity, and the EPSS score of less than 1 % suggests exploitation is currently unlikely. The vulnerability is not listed in the CISA KEV catalog. The likely attack vector, inferred from the description, involves an attacker delivering malicious content in a private tab that writes a cookie; when the private tab is closed, that cookie is then visible to the user in a normal browsing session. This risk is limited to users who expose private data to such content and close their private tabs, and no active exploitation has been documented.

Generated by OpenCVE AI on April 20, 2026 at 21:43 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Mozilla Firefox for iOS to version 143.1 or later.
  • Always close private browsing sessions before switching to normal browsing contexts to avoid residual cookie exposure.
  • Clear all cookies or use a cleanup tool after closing incognito tabs to remove any remaining private‑session data.

Generated by OpenCVE AI on April 20, 2026 at 21:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-31731 Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs This vulnerability affects Firefox for iOS < 143.1.
History

Mon, 13 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs This vulnerability affects Firefox for iOS < 143.1. Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs. This vulnerability was fixed in Firefox for iOS 143.1.

Thu, 30 Oct 2025 16:30:00 +0000

Type Values Removed Values Added
Title Data stored in cookies for non-HTML content while browsing Incognito could be viewed after closing private tabs

Fri, 03 Oct 2025 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Mozilla firefox
CPEs cpe:2.3:a:mozilla:firefox:*:*:*:*:*:iphone_os:*:*
Vendors & Products Mozilla firefox

Thu, 02 Oct 2025 09:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple ios
Mozilla
Mozilla firefox For Ios
Vendors & Products Apple
Apple ios
Mozilla
Mozilla firefox For Ios

Tue, 30 Sep 2025 14:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-359
Metrics cvssV3_1

{'score': 4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 30 Sep 2025 13:00:00 +0000

Type Values Removed Values Added
Description Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs This vulnerability affects Firefox for iOS < 143.1.
References

Subscriptions

Apple Ios
Mozilla Firefox Firefox For Ios
cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published:

Updated: 2026-04-13T14:31:38.944Z

Reserved: 2025-09-22T18:14:38.909Z

Link: CVE-2025-10859

cve-icon Vulnrichment

Updated: 2025-09-30T13:38:09.641Z

cve-icon NVD

Status : Modified

Published: 2025-09-30T13:15:48.550

Modified: 2026-04-13T15:16:37.753

Link: CVE-2025-10859

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-20T21:45:18Z

Weaknesses