CVE-2016-9062Sensitive Information Exposure in Mozilla Firefox

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
3.3LOWNVD
EPSS
0.1%
top 76.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mozilla FirefoxDebian Firefox
Timeline
PublishedJun 11
Latest updateMay 14

Description

Private browsing mode leaves metadata information, such as URLs, for sites visited in "browser.db" and "browser.db-wal" files within the Firefox profile after the mode is exited. Note: This issue only affects Firefox for Android. Other versions and operating systems are unaffected. This vulnerability affects Firefox < 50.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages3 packages

CVEListV5mozilla/firefoxunspecified50
NVDmozilla/firefox< 50.0

🔴Vulnerability Details

1
GHSA
GHSA-r8rg-hmw6-929h: Private browsing mode leaves metadata information, such as URLs, for sites visited in "browser2022-05-14

📋Vendor Advisories

1
Debian
CVE-2016-9062: firefox - Private browsing mode leaves metadata information, such as URLs, for sites visit...2016