Vulnerability Description
When in Private Browsing Mode on Windows 10, the Windows keyboard may retain word suggestions to improve the accuracy of the keyboard. This vulnerability affects Firefox < 72.
CVSS Score
5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | < 72.0 |
Related Weaknesses (CWE)
References
- https://bugzilla.mozilla.org/show_bug.cgi?id=1549394Issue TrackingPatchVendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2020-01/Vendor Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1549394Issue TrackingPatchVendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2020-01/Vendor Advisory
FAQ
What is CVE-2019-17018?
CVE-2019-17018 is a vulnerability with a CVSS score of 5.3 (MEDIUM). When in Private Browsing Mode on Windows 10, the Windows keyboard may retain word suggestions to improve the accuracy of the keyboard. This vulnerability affects Firefox < 72.
How severe is CVE-2019-17018?
CVE-2019-17018 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-17018?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox.