VulnerableCode Package Details - pkg:mozilla/Firefox%20for%20iOS@25.0.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:mozilla/Firefox%20for%20iOS@25.0.0

purl	pkg:mozilla/Firefox%20for%20iOS@25.0.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-myaj-sqb7-27dq	For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't needed in this case, and its usage was also leaking this token.	CVE-2020-6830

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:17:08.019350+00:00	Mozilla Importer	Fixing	VCID-myaj-sqb7-27dq	https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2020/mfsa2020-15.yml	38.0.0