Security Advisory

CVE-2025-55030

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-19 20:52:48

Last updated 2026-04-13 14:31:50

Assigner mozilla

State PUBLISHED

Description

Firefox for iOS would not respect a Content-Disposition header of type Attachment and would incorrectly display the content inline rather than downloading, potentially allowing for XSS attacks. This vulnerability was fixed in Firefox for iOS 142.

← Browse all CVEs View on cve.org ↗