What is CVE-2025-5020?

CVE-2025-5020 is a vulnerability in Mozilla Firefox For Ios. Published 2025-05-21.

Is CVE-2025-5020 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Mozilla Firefox For Ios

CVE-2025-5020

Opening maliciously-crafted URLs in Firefox from other apps such as Safari could have allowed attackers to spoof website addresses if the URLs utilized non-HTTP schemes used internally by the Firefox iOS client. This vulnerability was fixe…

EPSS: 0.002 (39.5th percentile) — read the EPSS interpretation.

Affected products

Mozilla Firefox For Ios — versions 139

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

bugzilla.mozilla.org/show_bug.cgi
www.mozilla.org/security/advisories/mfsa2025-39/

Frequently asked questions

What is CVE-2025-5020?: CVE-2025-5020 is a vulnerability in Mozilla Firefox For Ios. Published 2025-05-21.
Is CVE-2025-5020 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.