Search for vulnerabilities
| Vulnerability ID | VCID-mx87-qd7k-y7aw |
| Aliases |
CVE-2014-1586
|
| Summary | Mozilla developers Eric Shepherd and Jan-Ivar Bruaroey reported issues with privacy and video sharing using WebRTC. Once video sharing has started within a WebRTC session running within an <iframe>, video will continue to be shared even if the user selects the "e;Stop Sharing" button in the controls. The camera will also remain on even if the user navigates to another site and will begin streaming again if the user returns to the original site. This is a privacy problem and can lead to inadvertent video streaming. This does not affect implementations that are not within an <iframe>. In general this flaw cannot be exploited through email in the Thunderbird product because scripting is disabled, but is potentially a risk in browser or browser-like contexts. |
| Status | Published |
| Exploitability | 0.5 |
| Weighted Severity | 0.0 |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| There are no known CWE. |
| Reference id | Reference type | URL |
|---|---|---|
| https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1586.json | ||
| https://api.first.org/data/v1/epss?cve=CVE-2014-1586 | ||
| 1152366 | https://bugzilla.redhat.com/show_bug.cgi?id=1152366 | |
| CVE-2014-1586 | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1586 | |
| mfsa2014-81 | https://www.mozilla.org/en-US/security/advisories/mfsa2014-81 | |
| USN-2372-1 | https://usn.ubuntu.com/2372-1/ | |
| USN-2373-1 | https://usn.ubuntu.com/2373-1/ |
| Percentile | 0.70995 |
| EPSS Score | 0.00695 |
| Published At | July 30, 2025, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2025-07-31T08:10:44.491605+00:00 | Mozilla Importer | Import | https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2014/mfsa2014-81.md | 37.0.0 |