Open Bug 2016910 Opened 23 hours ago Updated 22 hours ago

Password Manager search exposes password content via filtering despite redaction

Categories

(Firefox :: about:logins, defect)

Product:
Firefox
Component:
about:logins
Version:
Firefox 147
Platform:
Desktop
Unspecified
Type:
defect

Tracking

()

Status:
UNCONFIRMED

People

(Reporter: filip, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0

Steps to reproduce:

  1. Open Firefox Password Manager.
  2. Locate a stored login entry for testing (e.g., site abc.test with password password12345).
  3. Click the search bar in the Password Manager.
  4. Type a partial or complete password from that entry (e.g., password1234).
  5. Observe that the login entry for abc.test appears in the search results.
  6. Note that the password field is still visually redacted, but the entry is returned because the search matches the hidden password value.

Actual results:

You can partially discover a password without ever unmasking it. This poses a risk for users who are sharing their screen and assume their password will remain hidden. An attacker could use this to confirm parts of a password, making it easier and faster to guess the full password.

When testing, it did not occur on my phone (android), only on the desktop Firefox 147 version.

Expected results:

The search feature should not index stored passwords by default.

The Bugbug bot thinks this bug should belong to the 'Firefox for Android::Logins' component, and is moving the bug to that component. Please correct in case you think the bot is wrong.

Component: Untriaged → Logins
Product: Firefox → Firefox for Android
Component: Logins → about:logins
Product: Firefox for Android → Firefox
Hardware: Unspecified → Desktop
You need to log in before you can comment on or make changes to this bug.