CVE-2013-2866

{"id": "CVE-2013-2866", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2013-06-19T20:55:01.303", "references": [{"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update-for-chrome-os.html", "source": "chrome-cve-admin@google.com"}, {"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update_18.html", "source": "chrome-cve-admin@google.com"}, {"url": "http://habrahabr.ru/post/182706/", "source": "chrome-cve-admin@google.com"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=249335", "source": "chrome-cve-admin@google.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16693", "source": "chrome-cve-admin@google.com"}, {"url": "https://src.chromium.org/viewvc/chrome?revision=206188&view=revision", "source": "chrome-cve-admin@google.com"}, {"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update-for-chrome-os.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://googlechromereleases.blogspot.com/2013/06/stable-channel-update_18.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://habrahabr.ru/post/182706/", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://code.google.com/p/chromium/issues/detail?id=249335", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16693", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://src.chromium.org/viewvc/chrome?revision=206188&view=revision", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Google Chrome OS before 27.0.1453.116 and separately, does not properly determine whether a user wishes to permit camera or microphone access by a Flash application, which allows remote attackers to obtain sensitive information from a machine's physical environment via a clickjacking attack, as demonstrated by an attack using a crafted Cascading Style Sheets (CSS) opacity property."}, {"lang": "es", "value": "El plugin Flash en Google Chrome anterior 27.0.1453.116 no determinar correctamente si un usuario desea autorizar el acceso de una aplicaci\u00f3n Flash a la c\u00e1mara o micr\u00f3fono, que permite a atacantes remotos obtener informaci\u00f3n sensible del entorno f\u00edsico de una m\u00e1quina a trav\u00e9s de ataques de clickjacking, como se demuestra por un ataque con una hoja de estilos (CSS) modificada en la propiedad de opacidad."}], "lastModified": "2024-11-21T01:52:32.377", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "765BFF0D-CE8B-44BA-9F76-D1F0A111B0EF", "versionEndIncluding": "27.0.1453.115"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B61BB7C7-519D-4084-9F48-9D992A829246"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95D7F7CA-6DE0-4F03-A7AC-C99C91A57913"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77A874B4-CA16-4FEC-B67C-6707D58DF338"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18BFC6C5-455A-4F64-9BE8-8C65E7196650"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F569848F-1558-447F-8852-F240FEEFAC9E"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7AD52267-6CC1-403E-AEF8-D2B257E8013D"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF4DB744-7805-4CEC-8720-207031051F12"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D5B5169-6135-4B1B-99E4-31813005B601"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E33356AF-7F3F-4CC9-AC6A-09669FF1E842"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20A98AF9-A23C-4B67-A93C-7E6F39917DFD"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F26B1CB-9B8F-4FD3-9BAC-32141EBBD766"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8005EA70-8B99-4653-9F58-D7EA3A538A47"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF7E711E-1240-4875-B824-FBA5FAB4BBAC"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9DFC6EF-C4F6-4861-8712-27C335DE9E11"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11667B12-9FAE-4043-B23D-983F178BFC8F"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57180BB1-D41C-42BE-B35E-532D451CC0F7"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63BEDF20-33CB-42AF-9335-9BF41B53DB9D"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80356017-C7C6-4F72-9A92-2F13C9ADE762"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "513A84A5-8EA5-4095-84C1-5B55E07CE332"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "268DE157-0335-404D-9568-F54D5AB1F4DD"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CC8931C-122D-4E0C-8855-456070822EF3"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A138D90F-0954-4627-A6CF-4671AC474FF1"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D5FE20F-29B9-4E48-88A8-E00AD790E93F"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.42:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E19C352-0C20-4AC1-BF53-1B0A416F0FF4"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.43:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6271E601-9E4D-4765-B71D-7FA2B9FE0013"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.44:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9702130A-CB3F-433E-892B-7B4338A048B6"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.45:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "129CCA51-B755-4A61-8B63-EC69AA2970F2"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.46:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D572B358-361A-49E2-B9E9-CC97F6424418"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.47:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "841CA94D-859E-425A-A735-62A35B20E23F"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9F1B5E4-BA8B-440B-B8D2-2E2093F4B32E"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BE6989D-BE91-4C92-9734-61A7F234E9F4"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC4481D4-4143-4BC0-983C-974695711F54"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7A5927A-3182-4BB5-8AC2-72EC2F43027C"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2780C1B8-F4B6-4C11-974C-AB0205896782"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08808A78-646E-4D6D-BD57-5EC533D904FD"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.56:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B4F526E2-8625-4337-9855-0FB3FB135BF7"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.57:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9AF361A-32B7-40A6-9863-793ED2C29C15"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.58:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96E9901E-F811-4736-B7C7-847584B162C5"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.59:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D9762D5-D548-4910-B8F1-3A0E3664C6CA"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.60:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "540B23F2-8434-4E40-9CBE-E8A60D7DB05D"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1FD2F21-FB01-4D78-8C05-0BBD2D257C39"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A8E2340-ED37-4942-B0D6-72E25AF8886C"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.63:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "892CABA3-5B2C-4168-9F1D-03D58D212A0C"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.64:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95B8C085-3EDE-4363-973C-EC649E6F07EE"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.65:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6775A3FB-7B3C-4713-B1F7-82D49C8867E2"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.66:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67A6E53E-EEE8-4D16-BEE0-1549E3C4FBE7"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.67:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8C48274-9025-4909-AA5F-2A6C90902646"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.68:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85C9EBB3-3329-43C6-998F-BAB480181BD9"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.69:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18A9D90E-1827-4F82-B2C6-214E0733B128"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.70:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BCD6FE8-504F-4B2B-B401-91F31862063E"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.71:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD33D555-75B1-43BC-B32E-B5D794419882"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.72:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9F8257E-D36C-4799-BD3D-CA8AE2E7701E"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19AB2B3D-EFE4-48BA-8D70-DAC500321472"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.74:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E40617D-2EB9-4773-A81B-5BA4F1BA6786"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.75:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B44A775E-C82A-4B5C-BA3B-20022408CF1A"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.76:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3E21A34-4AFB-4A44-BC09-68B6672DFD93"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.77:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0450801-F2EB-48B5-9DE4-6A0BCF7E3F17"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.78:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A50BF3E0-4AFB-43CD-A7BF-13827000D0A7"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.79:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A5BD9A8-A717-4398-847F-4C7D71AD5588"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.80:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C24422D7-523C-4A21-9649-06BB0A1908B6"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.81:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "040EF42D-185F-446C-944B-712AE2A62036"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.82:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C139C6E-3FA7-4295-9DE3-938EDEB09D20"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.83:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A518C048-1CB5-4BB9-B2D7-85A4399E8AB6"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.84:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92874CC7-49E9-4A7F-9021-1C7ECE35B2AB"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.85:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "345DA945-0490-4A5E-8E20-7FC5886AB170"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.86:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BA7F6E3-F872-4EF4-B2E5-C1677867F166"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.87:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3383A496-84BF-427F-88A0-1620A36E9177"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.88:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "482C95EF-FA97-4709-9FB4-B7AB3437C69C"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.89:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30D5B77B-5860-4855-B416-E84E43E267EE"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E157716D-4FC2-4F3A-B5ED-96C098408D1E"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21740483-7FFE-4B6C-894C-B27AA2209480"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.93:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B7B2089-CE70-43AA-9179-6F8323ED914A"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.94:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D1A6E30-7994-41C4-9580-A02531BAF182"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.102:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D88E28C-6EDF-4458-BB34-FF37461E5ACF"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.103:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6AF0D926-5D47-48CF-8509-C3A4F947B546"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.104:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65EF1827-D6E1-440C-B945-14F05FA2CD66"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.105:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57C27EB6-D050-4486-A996-68836355B36B"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.106:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DAA0CD16-3814-439C-961D-14A879E64162"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.107:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "610C6513-3162-4C38-BC5F-60D172C0532C"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.108:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B02A54D8-568C-4196-8DBE-CA0D82C7F546"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.109:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECCCF32A-6C58-4F99-811E-E3227A127E22"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.110:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3814AB6B-6CE4-492F-BBDC-73B48FF141BA"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.111:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "092CDE1D-2B22-4759-9FC5-316AEC562D19"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.112:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2F30F66-7A97-4B0A-B289-2B9C5EA6AA06"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.113:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59F07E63-C8A5-4F9B-9B46-5B8DADC6B119"}, {"criteria": "cpe:2.3:a:google:chrome:27.0.1453.114:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27E858D1-18EF-4668-8BA5-0C43A44D4CCC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:chrome_os:27.0.1453.115:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "204CE4EB-868D-42BF-9128-DEE315FC39DF"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "chrome-cve-admin@google.com"}