Firefox bug CVE-2026-6770 enabled cross-site tracking and Tor fingerprinting

A Firefox bug (CVE-2026-6770) allowed cross-site tracking and Tor fingerprinting, even in Private Browsing mode. This vulnerability, which exposed stable identifiers via IndexedDB, has been fixed in Firefox 150 and Tor Browser 15.0.10.