Mozilla Firefox for iOS Security Bypass Vulnerability (CNVD-2025-19564)

Mozilla Firefox for iOS is a web browser designed for iOS devices by the US-based Mozilla Foundation. A security bypass vulnerability exists in Mozilla Firefox for iOS prior to version 141, which stems from a QR scanner that may allow arbitrary websites to be opened. An attacker could exploit the...

CVE-2025-54145

The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme This vulnerability affects Firefox for iOS 141...

CVE-2025-54145

The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141...

CVE-2025-54145

The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme This vulnerability affects Firefox for iOS 141...

Mozilla Firefox for iOS 安全漏洞

Mozilla Firefox for iOS is a web browser designed for iOS devices by the US-based Mozilla Foundation. A security bypass vulnerability exists in Mozilla Firefox for iOS prior to version 141, which stems from a QR scanner that may allow arbitrary websites to be opened. An attacker could exploit the...

Linux Distros Unpatched Vulnerability : CVE-2025-54145

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme Th...

PT-2025-31714 · Mozilla +1 · Firefox For Ios +9

Name of the Vulnerable Software and Affected Versions: Firefox for iOS versions prior to 141 Description: The QR scanner component is susceptible to exploitation, potentially allowing malicious websites to be opened. This occurs when a user scans a specially crafted link utilizing Firefox's...

Security Vulnerabilities fixed in Firefox for iOS 141 — Mozilla

Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the expected sandbox restrictions declared on the parent page The URL scheme used by Firefox to facilitate searching of text queries could incorrectly allow attackers to open arbitrary website URLs or interna...

Malicious code in @native-rabobank/native-qr-scanner (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b17e7bdb26521a7b7e638054ce600a2db0fba3fe05b08edc51b7236581947c1a The OpenSSF Package Analysis project identified...

CVE-2023-28364

An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL...

CVE-2023-28364

An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL...

CVE-2023-28364

An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL...

Open redirect

An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL...

CVE-2023-28364

An Open Redirect vulnerability exists prior to version 1.52.117, where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now the user must manually navigate to the URL...

PT-2023-21674 · Brave · Brave Browser

Name of the Vulnerable Software and Affected Versions: Brave Browser Android versions prior to 1.52.117 Description: An Open Redirect issue exists where the built-in QR scanner in Brave Browser Android navigated to scanned URLs automatically without showing the URL first. Now, the user must...

Brave Android 1.49.122 Security Fixes

Restricted QR scanner to only open HTTP/HTTPS URL schemas rather than allowing any valid URL schema to be opened. Upgraded Chromium to 111.0.5563.64 — refer to Google Chrome advisories for inherited CVEs...

Samsung mobile 安全漏洞

Samsung Settings is a settings feature for Samsung Samsung mobile devices.An implicit intent hijacking vulnerability exists in Samsung Settings. The vulnerability stems from hijacking of unprivileged applications and can be exploited by attackers to obtain Wi-Fi SSIDs and passwords using a...

openSUSE Security Update : Chromium (openSUSE-2021-629)

This update for chromium fixes the following issues : - Chromium was updated to 90.0.4430.93 boo1184764,boo1185047,boo1185398 - CVE-2021-21227: Insufficient data validation in V8. - CVE-2021-21232: Use after free in Dev Tools. - CVE-2021-21233: Heap buffer overflow in ANGLE. - CVE-2021-21228:...

DEBIAN-CVE-2021-21208

Insufficient data validation in QR scanner in Google Chrome on iOS prior to 90.0.4430.72 allowed an attacker displaying a QR code to perform domain spoofing via a crafted QR code...

CVE-2021-21208

Insufficient data validation in QR scanner in Google Chrome on iOS prior to 90.0.4430.72 allowed an attacker displaying a QR code to perform domain spoofing via a crafted QR code...