CVE-2025-54145 - Vulnerability Details

- Scanning a malicious URL utilizing Firefox's open-text scheme with the QR code scanner could load arbitrary websites

Description

The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141.

Published: 2025-08-19

Score: 9.1 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The QR scanner in Firefox for iOS mishandles URLs that use the open‑text scheme. When a malicious QR code is scanned, the scanner treats the URL as an open‑text link and launches it, allowing an attacker to point the user to any website. The flaw enables the user to be redirected to a malicious or phishing site without their knowledge, potentially resulting in credential theft or other social engineering attacks. The weakness is a classic open redirect (CWE‑601).

Affected Systems

Mozilla Firefox for iOS is affected. All releases prior to version 141 contain the vulnerability. The issue was fixed in the 141 release, so only earlier builds need remediation.

Risk and Exploitability

The CVSS score of 9.1 marks the flaw as critical. The EPSS score of less than 1 % indicates a very low current chance of exploitation, and the vulnerability is not listed in the CISA KEV catalog. Nonetheless, the attack requires only that an attacker present a malicious QR code to a victim who scans it. Once scanned, the flaw immediately redirects to the attacker’s chosen URL, giving the attacker a convenient vector for phishing or other web‑based attacks.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Mozilla

Firefox for iOS

affected

Version	Status	Constraints
`141`	unaffected	≤ *

Configuration 1 [-]

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:iphone_os:*:*

No data.

Vendor	Product	Confidence	Versions
Apple	Ios	—	—
Mozilla	Firefox For Ios	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Firefox for iOS to version 141 or later, where the QR scanner no longer accepts open‑text URLs.
If an update cannot be applied immediately, disable the QR scanner feature in the app settings or refrain from using QR scanning until the fix is available.
Educate users to avoid scanning QR codes from untrusted or unknown sources.

Generated by OpenCVE AI on April 20, 2026 at 16:46 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-25228	The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme This vulnerability affects Firefox for iOS < 141.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00067.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://bugzilla.mozilla.org/show_bug.cgi?id=1946122
https://www.mozilla.org/security/advisories/mfsa2025-60/

History

Mon, 13 Apr 2026 15:00:00 +0000

Type	Values Removed	Values Added
Description	The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme This vulnerability affects Firefox for iOS < 141.	The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141.
Title		Scanning a malicious URL utilizing Firefox's open-text scheme with the QR code scanner could load arbitrary websites

Thu, 21 Aug 2025 18:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Mozilla firefox
CPEs		cpe:2.3:a:mozilla:firefox::::::iphone_os::*
Vendors & Products		Mozilla firefox

Thu, 21 Aug 2025 12:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple ios Mozilla Mozilla firefox For Ios
Vendors & Products		Apple Apple ios Mozilla Mozilla firefox For Ios

Wed, 20 Aug 2025 16:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-601
Metrics		cvssV3_1 `{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 19 Aug 2025 21:00:00 +0000

Type	Values Removed	Values Added
Description		The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme This vulnerability affects Firefox for iOS < 141.
References		https://bugzilla.mozilla.org/show_bug.cgi?id=1946122 https://www.mozilla.org/security/advisories/mfsa2025-60/

Subscriptions

Apple Ios

Mozilla Firefox Firefox For Ios

MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2025-08-19T20:52:48.366Z

Updated: 2026-04-13T14:30:56.826Z

Reserved: 2025-07-17T02:35:52.285Z

Link: CVE-2025-54145

Vulnrichment

Updated: 2025-08-20T14:02:30.568Z

NVD

Status : Modified

Published: 2025-08-19T21:15:27.843

Modified: 2026-04-13T15:17:02.177

Link: CVE-2025-54145

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-20T17:00:12Z

Weaknesses

CWE-601

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object