This issue was addressed through improved state management. This issue is fixed in visionOS 2.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. Password autofill may fill in passwords after failing authentication.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.