Firefox Vulnerability Allows Tor User Fingerprinting

📅 27 April 2026 at 08:39 UTC📰 Security WeekView original source ↗

The vulnerability is tracked as CVE-2026-6770 and it has been patched with the release of Firefox 150 and Tor 15.0.10. The post Firefox Vulnerability Allows Tor User Fingerprinting appeared first on SecurityWeek.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

A vulnerability in Firefox (CVE-2026-6770) allows Tor user fingerprinting, compromising user anonymity. The vulnerability was patched with the release of Firefox 150 and Tor 15.0.10.

⚙️Technical Details

CVEs

CVE-2026-6770

Affected Systems

Mozilla FirefoxMozilla Thunderbird

Attack Vectors

NETWORK

💥Impact Assessment

Severity: MEDIUM

Who Is at Risk

Users of Mozilla Firefox and Mozilla Thunderbird

🛡️Recommended Actions

1Update to the latest version of Firefox (150) and Tor (15.0.10)

2Disable IndexedDB component in Firefox until patched

3Use alternative browsers or email clients not affected by the vulnerability

📦Affected Products

Mozilla FirefoxMozilla Thunderbird

🔐NVD Verified DataVERIFIED

CVE-2026-6770 ↗CVSS 6.5 — MEDIUM

Attack Vector

NETWORK

Complexity

LOW

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Weaknesses

CWE-200

Affected Products (CPE)

Mozilla FirefoxMozilla Thunderbird

Advisories

📋 https://www.mozilla.org/security/advisories/mfsa2026-30/📋 https://www.mozilla.org/security/advisories/mfsa2026-32/📋 https://www.mozilla.org/security/advisories/mfsa2026-33/

Read the full article

This is a curated summary. The complete article is available at Security Week.

Read on Security Week ↗

← Back to feed