FKIE_CVE-2013-2866
Vulnerability from fkie_nvd - Published: 2013-06-19 20:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Google Chrome OS before 27.0.1453.116 and separately, does not properly determine whether a user wishes to permit camera or microphone access by a Flash application, which allows remote attackers to obtain sensitive information from a machine's physical environment via a clickjacking attack, as demonstrated by an attack using a crafted Cascading Style Sheets (CSS) opacity property.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| chrome | * | ||
| chrome | 27.0.1453.0 | ||
| chrome | 27.0.1453.1 | ||
| chrome | 27.0.1453.2 | ||
| chrome | 27.0.1453.3 | ||
| chrome | 27.0.1453.4 | ||
| chrome | 27.0.1453.5 | ||
| chrome | 27.0.1453.6 | ||
| chrome | 27.0.1453.7 | ||
| chrome | 27.0.1453.8 | ||
| chrome | 27.0.1453.9 | ||
| chrome | 27.0.1453.10 | ||
| chrome | 27.0.1453.11 | ||
| chrome | 27.0.1453.12 | ||
| chrome | 27.0.1453.13 | ||
| chrome | 27.0.1453.15 | ||
| chrome | 27.0.1453.34 | ||
| chrome | 27.0.1453.35 | ||
| chrome | 27.0.1453.36 | ||
| chrome | 27.0.1453.37 | ||
| chrome | 27.0.1453.38 | ||
| chrome | 27.0.1453.39 | ||
| chrome | 27.0.1453.40 | ||
| chrome | 27.0.1453.41 | ||
| chrome | 27.0.1453.42 | ||
| chrome | 27.0.1453.43 | ||
| chrome | 27.0.1453.44 | ||
| chrome | 27.0.1453.45 | ||
| chrome | 27.0.1453.46 | ||
| chrome | 27.0.1453.47 | ||
| chrome | 27.0.1453.49 | ||
| chrome | 27.0.1453.50 | ||
| chrome | 27.0.1453.51 | ||
| chrome | 27.0.1453.52 | ||
| chrome | 27.0.1453.54 | ||
| chrome | 27.0.1453.55 | ||
| chrome | 27.0.1453.56 | ||
| chrome | 27.0.1453.57 | ||
| chrome | 27.0.1453.58 | ||
| chrome | 27.0.1453.59 | ||
| chrome | 27.0.1453.60 | ||
| chrome | 27.0.1453.61 | ||
| chrome | 27.0.1453.62 | ||
| chrome | 27.0.1453.63 | ||
| chrome | 27.0.1453.64 | ||
| chrome | 27.0.1453.65 | ||
| chrome | 27.0.1453.66 | ||
| chrome | 27.0.1453.67 | ||
| chrome | 27.0.1453.68 | ||
| chrome | 27.0.1453.69 | ||
| chrome | 27.0.1453.70 | ||
| chrome | 27.0.1453.71 | ||
| chrome | 27.0.1453.72 | ||
| chrome | 27.0.1453.73 | ||
| chrome | 27.0.1453.74 | ||
| chrome | 27.0.1453.75 | ||
| chrome | 27.0.1453.76 | ||
| chrome | 27.0.1453.77 | ||
| chrome | 27.0.1453.78 | ||
| chrome | 27.0.1453.79 | ||
| chrome | 27.0.1453.80 | ||
| chrome | 27.0.1453.81 | ||
| chrome | 27.0.1453.82 | ||
| chrome | 27.0.1453.83 | ||
| chrome | 27.0.1453.84 | ||
| chrome | 27.0.1453.85 | ||
| chrome | 27.0.1453.86 | ||
| chrome | 27.0.1453.87 | ||
| chrome | 27.0.1453.88 | ||
| chrome | 27.0.1453.89 | ||
| chrome | 27.0.1453.90 | ||
| chrome | 27.0.1453.91 | ||
| chrome | 27.0.1453.93 | ||
| chrome | 27.0.1453.94 | ||
| chrome | 27.0.1453.102 | ||
| chrome | 27.0.1453.103 | ||
| chrome | 27.0.1453.104 | ||
| chrome | 27.0.1453.105 | ||
| chrome | 27.0.1453.106 | ||
| chrome | 27.0.1453.107 | ||
| chrome | 27.0.1453.108 | ||
| chrome | 27.0.1453.109 | ||
| chrome | 27.0.1453.110 | ||
| chrome | 27.0.1453.111 | ||
| chrome | 27.0.1453.112 | ||
| chrome | 27.0.1453.113 | ||
| chrome | 27.0.1453.114 | ||
| chrome_os | 27.0.1453.115 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"matchCriteriaId": "765BFF0D-CE8B-44BA-9F76-D1F0A111B0EF",
"versionEndIncluding": "27.0.1453.115",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B61BB7C7-519D-4084-9F48-9D992A829246",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.1:*:*:*:*:*:*:*",
"matchCriteriaId": "95D7F7CA-6DE0-4F03-A7AC-C99C91A57913",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.2:*:*:*:*:*:*:*",
"matchCriteriaId": "77A874B4-CA16-4FEC-B67C-6707D58DF338",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.3:*:*:*:*:*:*:*",
"matchCriteriaId": "18BFC6C5-455A-4F64-9BE8-8C65E7196650",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.4:*:*:*:*:*:*:*",
"matchCriteriaId": "F569848F-1558-447F-8852-F240FEEFAC9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.5:*:*:*:*:*:*:*",
"matchCriteriaId": "7AD52267-6CC1-403E-AEF8-D2B257E8013D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.6:*:*:*:*:*:*:*",
"matchCriteriaId": "DF4DB744-7805-4CEC-8720-207031051F12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.7:*:*:*:*:*:*:*",
"matchCriteriaId": "2D5B5169-6135-4B1B-99E4-31813005B601",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.8:*:*:*:*:*:*:*",
"matchCriteriaId": "E33356AF-7F3F-4CC9-AC6A-09669FF1E842",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.9:*:*:*:*:*:*:*",
"matchCriteriaId": "20A98AF9-A23C-4B67-A93C-7E6F39917DFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.10:*:*:*:*:*:*:*",
"matchCriteriaId": "1F26B1CB-9B8F-4FD3-9BAC-32141EBBD766",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.11:*:*:*:*:*:*:*",
"matchCriteriaId": "8005EA70-8B99-4653-9F58-D7EA3A538A47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.12:*:*:*:*:*:*:*",
"matchCriteriaId": "AF7E711E-1240-4875-B824-FBA5FAB4BBAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.13:*:*:*:*:*:*:*",
"matchCriteriaId": "C9DFC6EF-C4F6-4861-8712-27C335DE9E11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.15:*:*:*:*:*:*:*",
"matchCriteriaId": "11667B12-9FAE-4043-B23D-983F178BFC8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.34:*:*:*:*:*:*:*",
"matchCriteriaId": "57180BB1-D41C-42BE-B35E-532D451CC0F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.35:*:*:*:*:*:*:*",
"matchCriteriaId": "63BEDF20-33CB-42AF-9335-9BF41B53DB9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.36:*:*:*:*:*:*:*",
"matchCriteriaId": "80356017-C7C6-4F72-9A92-2F13C9ADE762",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.37:*:*:*:*:*:*:*",
"matchCriteriaId": "513A84A5-8EA5-4095-84C1-5B55E07CE332",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.38:*:*:*:*:*:*:*",
"matchCriteriaId": "268DE157-0335-404D-9568-F54D5AB1F4DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.39:*:*:*:*:*:*:*",
"matchCriteriaId": "8CC8931C-122D-4E0C-8855-456070822EF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.40:*:*:*:*:*:*:*",
"matchCriteriaId": "A138D90F-0954-4627-A6CF-4671AC474FF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.41:*:*:*:*:*:*:*",
"matchCriteriaId": "2D5FE20F-29B9-4E48-88A8-E00AD790E93F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.42:*:*:*:*:*:*:*",
"matchCriteriaId": "3E19C352-0C20-4AC1-BF53-1B0A416F0FF4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.43:*:*:*:*:*:*:*",
"matchCriteriaId": "6271E601-9E4D-4765-B71D-7FA2B9FE0013",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.44:*:*:*:*:*:*:*",
"matchCriteriaId": "9702130A-CB3F-433E-892B-7B4338A048B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.45:*:*:*:*:*:*:*",
"matchCriteriaId": "129CCA51-B755-4A61-8B63-EC69AA2970F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.46:*:*:*:*:*:*:*",
"matchCriteriaId": "D572B358-361A-49E2-B9E9-CC97F6424418",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.47:*:*:*:*:*:*:*",
"matchCriteriaId": "841CA94D-859E-425A-A735-62A35B20E23F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.49:*:*:*:*:*:*:*",
"matchCriteriaId": "A9F1B5E4-BA8B-440B-B8D2-2E2093F4B32E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.50:*:*:*:*:*:*:*",
"matchCriteriaId": "3BE6989D-BE91-4C92-9734-61A7F234E9F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.51:*:*:*:*:*:*:*",
"matchCriteriaId": "EC4481D4-4143-4BC0-983C-974695711F54",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.52:*:*:*:*:*:*:*",
"matchCriteriaId": "D7A5927A-3182-4BB5-8AC2-72EC2F43027C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.54:*:*:*:*:*:*:*",
"matchCriteriaId": "2780C1B8-F4B6-4C11-974C-AB0205896782",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.55:*:*:*:*:*:*:*",
"matchCriteriaId": "08808A78-646E-4D6D-BD57-5EC533D904FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.56:*:*:*:*:*:*:*",
"matchCriteriaId": "B4F526E2-8625-4337-9855-0FB3FB135BF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.57:*:*:*:*:*:*:*",
"matchCriteriaId": "B9AF361A-32B7-40A6-9863-793ED2C29C15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.58:*:*:*:*:*:*:*",
"matchCriteriaId": "96E9901E-F811-4736-B7C7-847584B162C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.59:*:*:*:*:*:*:*",
"matchCriteriaId": "3D9762D5-D548-4910-B8F1-3A0E3664C6CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.60:*:*:*:*:*:*:*",
"matchCriteriaId": "540B23F2-8434-4E40-9CBE-E8A60D7DB05D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.61:*:*:*:*:*:*:*",
"matchCriteriaId": "B1FD2F21-FB01-4D78-8C05-0BBD2D257C39",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.62:*:*:*:*:*:*:*",
"matchCriteriaId": "0A8E2340-ED37-4942-B0D6-72E25AF8886C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.63:*:*:*:*:*:*:*",
"matchCriteriaId": "892CABA3-5B2C-4168-9F1D-03D58D212A0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.64:*:*:*:*:*:*:*",
"matchCriteriaId": "95B8C085-3EDE-4363-973C-EC649E6F07EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.65:*:*:*:*:*:*:*",
"matchCriteriaId": "6775A3FB-7B3C-4713-B1F7-82D49C8867E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.66:*:*:*:*:*:*:*",
"matchCriteriaId": "67A6E53E-EEE8-4D16-BEE0-1549E3C4FBE7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.67:*:*:*:*:*:*:*",
"matchCriteriaId": "F8C48274-9025-4909-AA5F-2A6C90902646",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.68:*:*:*:*:*:*:*",
"matchCriteriaId": "85C9EBB3-3329-43C6-998F-BAB480181BD9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.69:*:*:*:*:*:*:*",
"matchCriteriaId": "18A9D90E-1827-4F82-B2C6-214E0733B128",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.70:*:*:*:*:*:*:*",
"matchCriteriaId": "3BCD6FE8-504F-4B2B-B401-91F31862063E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.71:*:*:*:*:*:*:*",
"matchCriteriaId": "AD33D555-75B1-43BC-B32E-B5D794419882",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.72:*:*:*:*:*:*:*",
"matchCriteriaId": "E9F8257E-D36C-4799-BD3D-CA8AE2E7701E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.73:*:*:*:*:*:*:*",
"matchCriteriaId": "19AB2B3D-EFE4-48BA-8D70-DAC500321472",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.74:*:*:*:*:*:*:*",
"matchCriteriaId": "7E40617D-2EB9-4773-A81B-5BA4F1BA6786",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.75:*:*:*:*:*:*:*",
"matchCriteriaId": "B44A775E-C82A-4B5C-BA3B-20022408CF1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.76:*:*:*:*:*:*:*",
"matchCriteriaId": "B3E21A34-4AFB-4A44-BC09-68B6672DFD93",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.77:*:*:*:*:*:*:*",
"matchCriteriaId": "F0450801-F2EB-48B5-9DE4-6A0BCF7E3F17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.78:*:*:*:*:*:*:*",
"matchCriteriaId": "A50BF3E0-4AFB-43CD-A7BF-13827000D0A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.79:*:*:*:*:*:*:*",
"matchCriteriaId": "1A5BD9A8-A717-4398-847F-4C7D71AD5588",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.80:*:*:*:*:*:*:*",
"matchCriteriaId": "C24422D7-523C-4A21-9649-06BB0A1908B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.81:*:*:*:*:*:*:*",
"matchCriteriaId": "040EF42D-185F-446C-944B-712AE2A62036",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.82:*:*:*:*:*:*:*",
"matchCriteriaId": "4C139C6E-3FA7-4295-9DE3-938EDEB09D20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.83:*:*:*:*:*:*:*",
"matchCriteriaId": "A518C048-1CB5-4BB9-B2D7-85A4399E8AB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.84:*:*:*:*:*:*:*",
"matchCriteriaId": "92874CC7-49E9-4A7F-9021-1C7ECE35B2AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.85:*:*:*:*:*:*:*",
"matchCriteriaId": "345DA945-0490-4A5E-8E20-7FC5886AB170",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.86:*:*:*:*:*:*:*",
"matchCriteriaId": "0BA7F6E3-F872-4EF4-B2E5-C1677867F166",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.87:*:*:*:*:*:*:*",
"matchCriteriaId": "3383A496-84BF-427F-88A0-1620A36E9177",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.88:*:*:*:*:*:*:*",
"matchCriteriaId": "482C95EF-FA97-4709-9FB4-B7AB3437C69C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.89:*:*:*:*:*:*:*",
"matchCriteriaId": "30D5B77B-5860-4855-B416-E84E43E267EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.90:*:*:*:*:*:*:*",
"matchCriteriaId": "E157716D-4FC2-4F3A-B5ED-96C098408D1E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.91:*:*:*:*:*:*:*",
"matchCriteriaId": "21740483-7FFE-4B6C-894C-B27AA2209480",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.93:*:*:*:*:*:*:*",
"matchCriteriaId": "9B7B2089-CE70-43AA-9179-6F8323ED914A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.94:*:*:*:*:*:*:*",
"matchCriteriaId": "3D1A6E30-7994-41C4-9580-A02531BAF182",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.102:*:*:*:*:*:*:*",
"matchCriteriaId": "1D88E28C-6EDF-4458-BB34-FF37461E5ACF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.103:*:*:*:*:*:*:*",
"matchCriteriaId": "6AF0D926-5D47-48CF-8509-C3A4F947B546",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.104:*:*:*:*:*:*:*",
"matchCriteriaId": "65EF1827-D6E1-440C-B945-14F05FA2CD66",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.105:*:*:*:*:*:*:*",
"matchCriteriaId": "57C27EB6-D050-4486-A996-68836355B36B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.106:*:*:*:*:*:*:*",
"matchCriteriaId": "DAA0CD16-3814-439C-961D-14A879E64162",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.107:*:*:*:*:*:*:*",
"matchCriteriaId": "610C6513-3162-4C38-BC5F-60D172C0532C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.108:*:*:*:*:*:*:*",
"matchCriteriaId": "B02A54D8-568C-4196-8DBE-CA0D82C7F546",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.109:*:*:*:*:*:*:*",
"matchCriteriaId": "ECCCF32A-6C58-4F99-811E-E3227A127E22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.110:*:*:*:*:*:*:*",
"matchCriteriaId": "3814AB6B-6CE4-492F-BBDC-73B48FF141BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.111:*:*:*:*:*:*:*",
"matchCriteriaId": "092CDE1D-2B22-4759-9FC5-316AEC562D19",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.112:*:*:*:*:*:*:*",
"matchCriteriaId": "C2F30F66-7A97-4B0A-B289-2B9C5EA6AA06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.113:*:*:*:*:*:*:*",
"matchCriteriaId": "59F07E63-C8A5-4F9B-9B46-5B8DADC6B119",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:google:chrome:27.0.1453.114:*:*:*:*:*:*:*",
"matchCriteriaId": "27E858D1-18EF-4668-8BA5-0C43A44D4CCC",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:chrome_os:27.0.1453.115:*:*:*:*:*:*:*",
"matchCriteriaId": "204CE4EB-868D-42BF-9128-DEE315FC39DF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Google Chrome OS before 27.0.1453.116 and separately, does not properly determine whether a user wishes to permit camera or microphone access by a Flash application, which allows remote attackers to obtain sensitive information from a machine\u0027s physical environment via a clickjacking attack, as demonstrated by an attack using a crafted Cascading Style Sheets (CSS) opacity property."
},
{
"lang": "es",
"value": "El plugin Flash en Google Chrome anterior 27.0.1453.116 no determinar correctamente si un usuario desea autorizar el acceso de una aplicaci\u00f3n Flash a la c\u00e1mara o micr\u00f3fono, que permite a atacantes remotos obtener informaci\u00f3n sensible del entorno f\u00edsico de una m\u00e1quina a trav\u00e9s de ataques de clickjacking, como se demuestra por un ataque con una hoja de estilos (CSS) modificada en la propiedad de opacidad."
}
],
"id": "CVE-2013-2866",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2013-06-19T20:55:01.303",
"references": [
{
"source": "chrome-cve-admin@google.com",
"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update-for-chrome-os.html"
},
{
"source": "chrome-cve-admin@google.com",
"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update_18.html"
},
{
"source": "chrome-cve-admin@google.com",
"url": "http://habrahabr.ru/post/182706/"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://code.google.com/p/chromium/issues/detail?id=249335"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16693"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://src.chromium.org/viewvc/chrome?revision=206188\u0026view=revision"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update-for-chrome-os.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update_18.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://habrahabr.ru/post/182706/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://code.google.com/p/chromium/issues/detail?id=249335"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16693"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://src.chromium.org/viewvc/chrome?revision=206188\u0026view=revision"
}
],
"sourceIdentifier": "chrome-cve-admin@google.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…