CVE-2025-55030
published 2025-08-19CVE-2025-55030: Firefox for iOS would not respect a Content-Disposition header of type Attachment and would incorrectly display the content inline rather than downloading…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
Firefox for iOS would not respect a Content-Disposition header of type Attachment and would incorrectly display the content inline rather than downloading, potentially allowing for XSS attacks. This vulnerability was fixed in Firefox for iOS 142.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | < 142.0 | 142.0 |
| mozilla | firefox | — | — |