CVE-2023-29546

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-29546

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-29546.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-29546

Related

Published

2023-06-19T11:15:09Z

Modified

2025-01-15T04:52:15.917741Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

When recording the screen while in Private Browsing on Firefox for Android the address bar and keyboard were not hidden, potentially leaking sensitive information.

This bug only affects Firefox for Android. Other operating systems are unaffected. This vulnerability affects Firefox for Android < 112 and Focus for Android < 112.

References

Affected packages

Git / github.com/mozilla-mobile/focus-ios

Affected ranges

Type: GIT
Repo: https://github.com/mozilla-mobile/focus-ios
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

770b09a76b5e2fb6fd0c9646733412904657dd69

Affected versions

8.*

8.1.1

8.1.6

v2.*

v2.0

v3.*

v3.1

v3.9

v7.*

v7.0.3

v8.*

v8.0

v8.0-b1

v8.0-b2

v8.1-b1