Security Advisory

CVE-2019-11749

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-09-27 17:15:23

Last updated 2024-08-04 23:03:32

Assigner mozilla

State PUBLISHED

Description

A vulnerability exists in WebRTC where malicious web content can use probing techniques on the getUserMedia API using constraints to reveal device properties of cameras on the system without triggering a user prompt or notification. This allows for the potential fingerprinting of users. This vulnerability affects Firefox < 69 and Firefox ESR < 68.1.

← Browse all CVEs View on cve.org ↗