CVE-2024-0953

Name of the Vulnerable Software and Affected Versions Firefox for iOS versions prior to 129

Description When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. This may surprise the user and potentially direct them to unwanted content.

Recommendations For Firefox for iOS versions prior to 129, update to version 129 or later to resolve the issue. As a temporary workaround, consider disabling the QR Code Scanner feature until a patch is available. Restrict access to the QR Code Scanner to minimize the risk of exploitation. Avoid using the QR Code Scanner feature in the affected Firefox for iOS app until the issue is resolved.