CVE-2019-11749 log

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
A vulnerability exists in the WebRTC component of Firefox before 69.0 where malicious web content can use probing techniques on the getUserMedia API using constraints to reveal device properties of cameras on the system without triggering a user prompt or notification. This allows for the potential fingerprinting of users.
Group Package Affected Fixed Severity Status Ticket
AVG-1036 firefox 68.0.2-1 69.0-1 High Fixed
Date Advisory Group Package Severity Description
04 Sep 2019 ASA-201909-2 AVG-1036 firefox High multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2019-25/#CVE-2019-11749
https://bugzilla.mozilla.org/show_bug.cgi?id=1565374