Loading market data...
← Back to CVE feed

CVE-2026-12068

HIGH CVSS 7.4 View on NVD ↗

Description

Information disclosure vulnerability in Avira Password Manager when used with Mozilla Firefox may allow a remote attacker operating a cross-origin iframe to obtain credentials autofilled for the parent web page via incorrect autofill field selection. This issue affects Avira Password Manager when used with Mozilla Firefox on Windows, macOS, and Linux.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Published: Jun 12, 2026 23:16 UTC Modified: Jun 12, 2026 23:16 UTC