Mozilla · Firefox · CVE-2020-15651
**Name of the Vulnerable Software and Affected Versions**
Firefox for iOS versions prior to 28
**Description**
A unicode RTL order character in the downloaded file name can be used to change the file's name during the download UI flow to change the file extension.
**Recommendations**
For versions prior to 28, update to version 28 or later to resolve the issue.