Login Sign Up

CVE-2025-27425

4.3 MEDIUM
Authentication Bypass

📋 TL;DR

This vulnerability in Firefox for iOS allows QR codes containing website URLs to open those URLs automatically without user confirmation. It affects Firefox for iOS users running versions below 136, potentially exposing them to malicious websites without their knowledge.

💻 Affected Systems

Products:
  • Firefox for iOS
Versions: All versions < 136
Operating Systems: iOS
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects Firefox for iOS mobile browser; other Firefox versions and browsers are not affected.

📦 What is this software?

Firefox by Mozilla

View all CVEs affecting Firefox →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Users could be redirected to phishing sites, malware distribution pages, or credential harvesting sites without any warning or consent.

🟠

Likely Case

Users scanning QR codes from untrusted sources could be taken to unwanted or malicious websites, potentially leading to phishing attempts or unwanted tracking.

🟢

If Mitigated

With proper user awareness and updated software, the risk is minimal as users would receive confirmation prompts before URL navigation.

🌐 Internet-Facing: MEDIUM - Requires user interaction (scanning QR code) but can affect any Firefox for iOS user exposed to malicious QR codes.
🏢 Internal Only: LOW - Primarily affects mobile users in various environments, not specific to internal networks.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires the user to scan a malicious QR code, making it dependent on social engineering.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firefox for iOS 136 and later

Vendor Advisory: https://www.mozilla.org/security/advisories/mfsa2025-13/

Restart Required: No

Instructions:

1. Open the App Store on your iOS device. 2. Search for Firefox. 3. Tap 'Update' next to Firefox. 4. Wait for the update to complete. 5. Launch Firefox to verify the update.

🔧 Temporary Workarounds

Disable QR code scanning in Firefox

ios

Prevent Firefox from automatically scanning QR codes by disabling the feature

Use alternative QR scanner

ios

Use iOS Camera or a dedicated QR scanner app instead of Firefox's built-in scanner

🧯 If You Can't Patch

  • Avoid scanning QR codes with Firefox for iOS until patched
  • Use alternative browsers for QR code scanning functionality

🔍 How to Verify

Check if Vulnerable:

Check Firefox version in Settings > About Firefox. If version is below 136, you are vulnerable.

Check Version:

Open Firefox for iOS, go to Settings > About Firefox to view version

Verify Fix Applied:

After updating, verify version is 136 or higher in Settings > About Firefox.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected URL navigations without user interaction logs
  • QR code scan events followed by immediate URL loading

Network Indicators:

  • Unexpected connections to domains from QR code scans without user confirmation

SIEM Query:

Not applicable for mobile browser vulnerabilities on personal devices

📊 Metadata

CVE ID: CVE-2025-27425
CVSS v3 Score: 4.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
CWE: CWE-287
EPSS Score: 0.09% exploit probability (26th percentile)
Published: March 4, 2025
Last Updated: April 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-27425, you might also want to check these:

CVE-2024-27767 10.0

CVE-2024-27767 is an authentication bypass vulnerability that allows attackers to gain unauthorized ...

Same vulnerability type (CWE-287)
CVE-2026-24898 10.0

OpenEMR versions before 8.0.0 contain an unauthenticated token disclosure vulnerability in the MedEx...

Same vulnerability type (CWE-287)
CVE-2026-20127 10.0

This critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager al...

Same vulnerability type (CWE-287)