Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2015-3334
HistoryApr 19, 2015 - 10:59 a.m.

CVE-2015-3334

2015-04-1910:59:14
CWE-17
[email protected]
web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.7%

JSON

browser/ui/website_settings/website_settings.cc in Google Chrome before 42.0.2311.90 does not always display “Media: Allowed by you” in a Permissions table after the user has granted camera permission to a web site, which might make it easier for user-assisted remote attackers to obtain sensitive video data from a device’s physical environment via a crafted web site that turns on the camera at a time when the user believes that camera access is prohibited.

Affected configurations

NVD
Node
googlechromeRange42.0.2311.60
Node
debiandebian_linuxMatch7.0
OR
debiandebian_linuxMatch8.0
Node
opensuseopensuseMatch13.1
OR
opensuseopensuseMatch13.2

Related

prion 1
cve 1
debiancve 1
cvelist 1
ubuntucve 1
openvas 5
securityvulns 2
nessus 5
osv 1
debian 2
prion
prion
Design/Logic Flaw
2015-04-19 10:59:00
cve
cve
CVE-2015-3334
2015-04-19 10:59:14
debiancve
debiancve
CVE-2015-3334
2015-04-19 10:59:00
cvelist
cvelist
CVE-2015-3334
2015-04-19 10:00:00
ubuntucve
ubuntucve
CVE-2015-3334
2015-04-19 00:00:00
openvas
openvas
Google Chrome Multiple Vulnerabilities-02 (Apr 2015) - Windows
2015-04-21 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Apr 2015) - Linux
2015-04-21 00:00:00
Google Chrome Multiple Vulnerabilities-02 (Apr 2015) - Mac OS X
2015-04-21 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3238-1] chromium-browser security update
2015-05-05 00:00:00
Google Chrome / Chromium multiple security vulnerabilities
2015-05-25 00:00:00
nessus
nessus
Google Chrome < 42.0.2311.90 Multiple Vulnerabilities
2015-04-16 00:00:00
Google Chrome < 42.0.2311.90 Multiple Vulnerabilities
2015-06-15 00:00:00
Google Chrome < 42.0.2311.90 Multiple Vulnerabilities (Mac OS X)
2015-04-16 00:00:00
osv
osv
chromium-browser - security update
2015-04-26 00:00:00
debian
debian
[SECURITY] [DSA 3238-1] chromium-browser security update
2015-04-27 02:41:29
[SECURITY] [DSA 3238-1] chromium-browser security update
2015-04-27 02:41:29

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.7%

JSON
Related for NVD:CVE-2015-3334
prion1cve1debiancve1cvelist1ubuntucve1openvas5securityvulns2nessus5osv1debian2