CVE-2020-6824

Summary

Initially, a user opens a Private Browsing Window and generates a password for a site, then closes the Private Browsing Window but leaves Firefox open. Subsequently, if the user had opened a new Private Browsing Window, revisited the same site, and generated a new password - the generated passwords would have been identical, rather than independent. This vulnerability affects Firefox < 75.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 75affected

Weaknesses

  • Generated passwords may be identical on the same site between separate private browsing sessions

ADP Enrichment

CVE Program Container

Additional References

References