PT-2020-14578 · Mozilla · Firefox For Android

Karol Frejlich

Published

2020-10-01

Updated

2021-07-21

CVE-2020-15671

CVSS v3.1

3.1

Low

Vector

AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Firefox for Android versions prior to 80

Description A race condition may occur when typing in a password under certain conditions, where the InputContext is not being correctly set for the input field. This results in the typed password being saved to the keyboard dictionary.

Recommendations For versions prior to 80, update to version 80 or later to resolve the issue.

Fix

Information Disclosure

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-362

Related Identifiers

CVE-2020-15671

Affected Products

Firefox For Android

PT-2020-14578 · Mozilla · Firefox For Android

CVE-2020-15671

Weakness Enumeration

Related Identifiers

Affected Products

References · 4