4.3

CVE-2013-2866

The Flash plug-in in Google Chrome before 27.0.1453.116, as used on Google Chrome OS before 27.0.1453.116 and separately, does not properly determine whether a user wishes to permit camera or microphone access by a Flash application, which allows remote attackers to obtain sensitive information from a machine's physical environment via a clickjacking attack, as demonstrated by an attack using a crafted Cascading Style Sheets (CSS) opacity property.

Data is provided by the National Vulnerability Database (NVD)
GoogleChrome Version <= 27.0.1453.115
GoogleChrome Version27.0.1453.0
GoogleChrome Version27.0.1453.1
GoogleChrome Version27.0.1453.2
GoogleChrome Version27.0.1453.3
GoogleChrome Version27.0.1453.4
GoogleChrome Version27.0.1453.5
GoogleChrome Version27.0.1453.6
GoogleChrome Version27.0.1453.7
GoogleChrome Version27.0.1453.8
GoogleChrome Version27.0.1453.9
GoogleChrome Version27.0.1453.10
GoogleChrome Version27.0.1453.11
GoogleChrome Version27.0.1453.12
GoogleChrome Version27.0.1453.13
GoogleChrome Version27.0.1453.15
GoogleChrome Version27.0.1453.34
GoogleChrome Version27.0.1453.35
GoogleChrome Version27.0.1453.36
GoogleChrome Version27.0.1453.37
GoogleChrome Version27.0.1453.38
GoogleChrome Version27.0.1453.39
GoogleChrome Version27.0.1453.40
GoogleChrome Version27.0.1453.41
GoogleChrome Version27.0.1453.42
GoogleChrome Version27.0.1453.43
GoogleChrome Version27.0.1453.44
GoogleChrome Version27.0.1453.45
GoogleChrome Version27.0.1453.46
GoogleChrome Version27.0.1453.47
GoogleChrome Version27.0.1453.49
GoogleChrome Version27.0.1453.50
GoogleChrome Version27.0.1453.51
GoogleChrome Version27.0.1453.52
GoogleChrome Version27.0.1453.54
GoogleChrome Version27.0.1453.55
GoogleChrome Version27.0.1453.56
GoogleChrome Version27.0.1453.57
GoogleChrome Version27.0.1453.58
GoogleChrome Version27.0.1453.59
GoogleChrome Version27.0.1453.60
GoogleChrome Version27.0.1453.61
GoogleChrome Version27.0.1453.62
GoogleChrome Version27.0.1453.63
GoogleChrome Version27.0.1453.64
GoogleChrome Version27.0.1453.65
GoogleChrome Version27.0.1453.66
GoogleChrome Version27.0.1453.67
GoogleChrome Version27.0.1453.68
GoogleChrome Version27.0.1453.69
GoogleChrome Version27.0.1453.70
GoogleChrome Version27.0.1453.71
GoogleChrome Version27.0.1453.72
GoogleChrome Version27.0.1453.73
GoogleChrome Version27.0.1453.74
GoogleChrome Version27.0.1453.75
GoogleChrome Version27.0.1453.76
GoogleChrome Version27.0.1453.77
GoogleChrome Version27.0.1453.78
GoogleChrome Version27.0.1453.79
GoogleChrome Version27.0.1453.80
GoogleChrome Version27.0.1453.81
GoogleChrome Version27.0.1453.82
GoogleChrome Version27.0.1453.83
GoogleChrome Version27.0.1453.84
GoogleChrome Version27.0.1453.85
GoogleChrome Version27.0.1453.86
GoogleChrome Version27.0.1453.87
GoogleChrome Version27.0.1453.88
GoogleChrome Version27.0.1453.89
GoogleChrome Version27.0.1453.90
GoogleChrome Version27.0.1453.91
GoogleChrome Version27.0.1453.93
GoogleChrome Version27.0.1453.94
GoogleChrome Version27.0.1453.102
GoogleChrome Version27.0.1453.103
GoogleChrome Version27.0.1453.104
GoogleChrome Version27.0.1453.105
GoogleChrome Version27.0.1453.106
GoogleChrome Version27.0.1453.107
GoogleChrome Version27.0.1453.108
GoogleChrome Version27.0.1453.109
GoogleChrome Version27.0.1453.110
GoogleChrome Version27.0.1453.111
GoogleChrome Version27.0.1453.112
GoogleChrome Version27.0.1453.113
GoogleChrome Version27.0.1453.114
GoogleChrome Os Version27.0.1453.115
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.53% 0.645
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:P/I:N/A:N