Firefox for ios

This hub aggregates every CVE we track for Firefox for ios, a product in the consumer software space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Firefox for ios.

• CVE-2026-53900Cookie injection was possible when opening a PDF link4.3Jun 16, 2026
• CVE-2026-53899Cross-origin cookies could be leaked when opening a PDF link6.5Jun 16, 2026
• CVE-2026-9309Arbitrary JavaScript execution in internal pages via Reader View JSON-LD injection5.4Jun 1, 2026
• CVE-2026-9308Arbitrary JavaScript execution in Reader View due to wrong HTML replacement order5.4Jun 1, 2026
• CVE-2026-9078Firefox iOS RTL Domain Rendering Issue in Link Preview5.4May 25, 2026
• CVE-2026-8706Sensitive user data could be leaked to other applications through Reader mode6.5May 19, 2026
• CVE-2026-2634Spoofed web content presented under trusted domains using scripted navigation on Firefox iOS9.8Feb 24, 2026
• CVE-2026-2032Interrupted page loads in new tabs could allow website spoofing under trusted domains in Firefox iOS4.3Feb 16, 2026
• CVE-2025-14744Filename spoofing via Unicode Right-to-Left Override in Firefox for iOS6.5Dec 18, 2025
• CVE-2025-10859Data stored in cookies for non-HTML content while browsing Incognito could be viewed after closing private tabs4.0Sep 30, 2025
• CVE-2025-55029Malicious scripts could spam popups for denial of service attacks7.5Aug 19, 2025
• CVE-2025-55031Passkey phishing within Bluetooth range9.8Aug 19, 2025
• CVE-2025-55028JavaScript alerts could impede UI interaction or allow denial of service attacks6.5Aug 19, 2025
• CVE-2025-55030Content-Disposition headers incorrectly ignored for some MIME types6.1Aug 19, 2025
• CVE-2025-54145Scanning a malicious URL utilizing Firefox's open-text scheme with the QR code scanner could load arbitrary websites9.1Aug 19, 2025