CVE-2020-15671

Summary

When typing in a password under certain conditions, a race may have occured where the InputContext was not being correctly set for the input field, resulting in the typed password being saved to the keyboard dictionary. This vulnerability affects Firefox for Android < 80.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefox for Androidunspecified < 80affected

Weaknesses

  • Passwords could be saved to phone keyboard dictionary

ADP Enrichment

CVE Program Container

Additional References

References