Mozilla Foundation Security Advisory 2020-23

Security Vulnerabilities fixed in Firefox for iOS 27

Announced
June 25, 2020
Impact
moderate
Products
Firefox for iOS
Fixed in
  • Firefox for iOS 27

#CVE-2020-12414: IndexedDB persists in private browsing mode

Reporter
Konark Modi - @konarkmodi
Impact
moderate
Description

IndexedDB should be cleared when leaving private browsing mode and it is not, the API for WKWebViewConfiguration was being used incorrectly and requires the private instance of this object be deleted when leaving private mode.

References