Firefox Vulnerability Allows Tor User Fingerprinting
Summary
A vulnerability in Firefox, identified as CVE-2026-6770, has been patched. This flaw could have allowed for the fingerprinting of Tor users, potentially compromising their anonymity. The fix was included in the releases of Firefox 150 and Tor 15.0.10.
IFF Assessment
FOE
This is bad news for defenders as a vulnerability was discovered that could compromise user anonymity, even within a privacy-focused tool like Tor.
Severity
6.5
Medium
Defender Context
This vulnerability highlights the ongoing challenges in maintaining user anonymity, especially when combining privacy tools like Tor with widely used browsers like Firefox. Defenders should ensure their users are running the latest patched versions of both Firefox and Tor to mitigate risks of fingerprinting and potential deanonymization.