{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-54145", "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "state": "PUBLISHED", "assignerShortName": "mozilla", "dateReserved": "2025-07-17T02:35:52.285Z", "datePublished": "2025-08-19T20:52:48.366Z", "dateUpdated": "2026-04-13T14:30:56.826Z"}, "containers": {"cna": {"affected": [{"product": "Firefox for iOS", "vendor": "Mozilla", "versions": [{"status": "unaffected", "version": "141", "lessThanOrEqual": "*", "versionType": "rpm"}]}], "descriptions": [{"lang": "en", "value": "The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141."}]}], "title": "Scanning a malicious URL utilizing Firefox's open-text scheme with the QR code scanner could load arbitrary websites", "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1946122"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2025-60/"}], "credits": [{"lang": "en", "value": "James Lee"}], "providerMetadata": {"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla", "dateUpdated": "2026-04-13T14:30:56.826Z"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-601", "lang": "en", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-08-20T14:02:26.579206Z", "id": "CVE-2025-54145", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-20T15:17:33.903Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-54145", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-08-20T14:02:26.579206Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-601", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-20T14:02:30.568Z"}}], "cna": {"title": "Scanning a malicious URL utilizing Firefox's open-text scheme with the QR code scanner could load arbitrary websites", "credits": [{"lang": "en", "value": "James Lee"}], "affected": [{"vendor": "Mozilla", "product": "Firefox for iOS", "versions": [{"status": "unaffected", "version": "141", "versionType": "rpm", "lessThanOrEqual": "*"}]}], "references": [{"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1946122"}, {"url": "https://www.mozilla.org/security/advisories/mfsa2025-60/"}], "descriptions": [{"lang": "en", "value": "The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141.", "supportingMedia": [{"type": "text/html", "value": "The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141.", "base64": false}]}], "providerMetadata": {"orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla", "dateUpdated": "2026-04-13T14:30:56.826Z"}}}, "cveMetadata": {"cveId": "CVE-2025-54145", "state": "PUBLISHED", "dateUpdated": "2026-04-13T14:30:56.826Z", "dateReserved": "2025-07-17T02:35:52.285Z", "assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "datePublished": "2025-08-19T20:52:48.366Z", "assignerShortName": "mozilla"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:iphone_os:*:*", "matchCriteriaId": "49B2D080-DBF5-4711-8563-B24D688F8B31", "versionEndExcluding": "141.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141."}, {"lang": "es", "value": "El esc\u00e1ner QR podr\u00eda permitir que se abran sitios web arbitrarios si un usuario fuera enga\u00f1ado para escanear un enlace malicioso que aprovechara el esquema de URL de texto abierto de Firefox. Esta vulnerabilidad afecta a Firefox para iOS < 141."}], "id": "CVE-2025-54145", "lastModified": "2026-04-13T15:17:02.177", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2025-08-19T21:15:27.843", "references": [{"source": "security@mozilla.org", "tags": ["Issue Tracking", "Permissions Required"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1946122"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "https://www.mozilla.org/security/advisories/mfsa2025-60/"}], "sourceIdentifier": "security@mozilla.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-601"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T16:46:52.906269+00:00", "value": {"mitigation_remediation": ["Upgrade Firefox for iOS to version\u202f141 or later, where the QR scanner no longer accepts open\u2011text URLs.", "If an update cannot be applied immediately, disable the QR scanner feature in the app settings or refrain from using QR scanning until the fix is available.", "Educate users to avoid scanning QR codes from untrusted or unknown sources."], "summary": {"action": "Update browser", "impact": "Arbitrary website navigation through QR scanner leading to phishing or malicious content"}, "threat_synthesis": {"affected_systems": "Mozilla Firefox for iOS is affected. All releases prior to version 141 contain the vulnerability. The issue was fixed in the 141 release, so only earlier builds need remediation.", "description_and_impact": "The QR scanner in Firefox for iOS mishandles URLs that use the open\u2011text scheme. When a malicious QR code is scanned, the scanner treats the URL as an open\u2011text link and launches it, allowing an attacker to point the user to any website. The flaw enables the user to be redirected to a malicious or phishing site without their knowledge, potentially resulting in credential theft or other social engineering attacks. The weakness is a classic open redirect (CWE\u2011601).", "risk_and_exploitability": "The CVSS score of 9.1 marks the flaw as critical. The EPSS score of less than 1\u202f% indicates a very low current chance of exploitation, and the vulnerability is not listed in the CISA KEV catalog. Nonetheless, the attack requires only that an attacker present a malicious QR code to a victim who scans it. Once scanned, the flaw immediately redirects to the attacker\u2019s chosen URL, giving the attacker a convenient vector for phishing or other web\u2011based attacks."}}}}, "created": "2025-08-21T12:31:32.186140+00:00", "updated": "2026-04-20T17:00:12.709761+00:00", "vendors": ["apple", "apple$PRODUCT$ios", "mozilla", "mozilla$PRODUCT$firefox_for_ios"]}