CVE-2013-2866

Опубликовано: 19 июн. 2013

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Google Chrome OS before 27.0.1453.116 and separately, does not properly determine whether a user wishes to permit camera or microphone access by a Flash application, which allows remote attackers to obtain sensitive information from a machine's physical environment via a clickjacking attack, as demonstrated by an attack using a crafted Cascading Style Sheets (CSS) opacity property.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 27.0.1453.115 (включая)

cpe:2.3:a:google:chrome:27.0.1453.0:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.1:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.2:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.3:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.4:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.5:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.6:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.7:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.8:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.9:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.10:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.11:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.12:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.13:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.15:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.34:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.35:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.36:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.37:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.38:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.39:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.40:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.41:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.42:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.43:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.44:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.45:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.46:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.47:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.49:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.50:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.51:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.52:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.54:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.55:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.56:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.57:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.58:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.59:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.60:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.61:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.62:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.63:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.64:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.65:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.66:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.67:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.68:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.69:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.70:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.71:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.72:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.73:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.74:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.75:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.76:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.77:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.78:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.79:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.80:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.81:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.82:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.83:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.84:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.85:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.86:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.87:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.88:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.89:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.90:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.91:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.93:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.94:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.102:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.103:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.104:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.105:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.106:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.107:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.108:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.109:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.110:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.111:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.112:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.113:*:*:*:*:*:*:*

cpe:2.3:a:google:chrome:27.0.1453.114:*:*:*:*:*:*:*

cpe:2.3:o:google:chrome_os:27.0.1453.115:*:*:*:*:*:*:*

EPSS

Процентиль: 67%

0.0053

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2013-2866

ubuntu

больше 12 лет назад

CVE-2013-2866

debian

больше 12 лет назад

The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Go ...

GHSA-qj7f-jf6q-v5f2

github

больше 3 лет назад

EPSS

Процентиль: 67%

0.0053

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-264