Opera allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Opera to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-22,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 6.06 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 6.10 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 7.11 |
Heap-based buffer overflow in Opera 7.11 and 7.20 allows remote attackers to execute arbitrary code via an HREF with a large number of escaped characters in the server name.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-787,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 7.20 |
| opera | opera_browser | 7.11 |
Buffer overflow in Opera 6.05 and 6.06, and possibly other versions, allows remote attackers to execute arbitrary code via a URL with a long username.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-120,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 6.06 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 7.0 |
Buffer overflow in Opera 7.02 Build 2668 allows remote attackers to crash Opera via a long HTTP request ending in a .ZIP extension.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-120,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 7.02 |
Heap-based buffer overflow in Opera 6.05 through 7.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a filename with a long extension.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-787,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
The PluginContext object of Opera 6.05 and 7.0 allows remote attackers to cause a denial of service (crash) via an HTTP request containing a long string that gets passed to the ShowDocument method.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 6.05 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 7.01 |
Cross-site scripting (XSS) vulnerability in Opera 6.0 through 7.0 with automatic redirection disabled allows remote attackers to inject arbitrary web script or HTML via the HTTP Location header.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera | * |
Argument injection vulnerability in Opera before 7.50 does not properly filter "-" characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via (1) the "-f" option on Windows XP or (2) the "-n" option on Linux.
CVSS 2.0
Severity: LOW
Problem Type: CWE-88,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.50 and earlier allows remote web sites to provide a "Shortcut Icon" (favicon) that is wider than expected, which could allow the web sites to spoof a trusted domain and facilitate phishing attacks using a wide icon and extra spaces.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 7.51 |
| opera | opera_browser | 7.50 |
Opera does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote attackers to steal cookies and conduct unauthorized activities, aka "Cross Security Boundary Cookie Injection."
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-669,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 7.51 |
Opera 7.x up to 7.54, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-74,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.54 allows remote attackers to cause a denial of service (application crash from memory exhaustion), as demonstrated using Javascript code that continuously creates nested arrays and then sorts the newly created arrays.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-400,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory.
CVSS 2.0
Severity: LOW
Problem Type: CWE-668,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| suse | suse_linux | 5.3 |
| suse | suse_linux | 4.4.1 |
| opera | opera_browser | * |
| suse | suse_linux | 9.2 |
| suse | suse_linux | 9.0 |
| suse | suse_linux | 6.2 |
| suse | suse_linux | 3.0 |
| suse | suse_linux | 7.0 |
| suse | suse_linux | 6.1 |
| suse | suse_linux | 4.0 |
| suse | suse_linux | 2.0 |
| suse | suse_linux | 8.1 |
| suse | suse_linux | 7.1 |
| suse | suse_linux | 4.3 |
| suse | suse_linux | 8.2 |
| suse | suse_linux | 4.2 |
| suse | suse_linux | 5.1 |
| suse | suse_linux | 1.0 |
| suse | suse_linux | 9.1 |
| suse | suse_linux | 5.2 |
| gentoo | linux | * |
| suse | suse_linux | 4.4 |
| suse | suse_linux | 6.3 |
| suse | suse_linux | 7.2 |
| suse | suse_linux | 8.0 |
| suse | suse_linux | 5.0 |
| suse | suse_linux | 7.3 |
| suse | suse_linux | 6.0 |
| kde | kde | 3.2.3 |
| suse | suse_linux | 6.4 |
Opera allows remote attackers to cause a denial of service (invalid memory reference and application crash) via a web page or HTML email that contains a TBODY tag with a large COL SPAN value, as demonstrated by mangleme.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
The Javascript engine in Opera 7.23 allows remote attackers to cause a denial of service (crash) by creating a new Array object with a large size value, then writing into that array.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera Web Browser 7.0 through 7.23 allows remote attackers to trick users into executing a malicious file by embedding a CLSID in the file name, which causes the malicious file to appear as a trusted file type, aka "File Download Extension Spoofing."
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera Browser 7.23, and other versions before 7.50, updates the address bar as soon as the user clicks a link, which allows remote attackers to redirect to other sites via the onUnload attribute.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-601,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
A race condition in Opera web browser 7.53 Build 3850 causes Opera to fill in the address bar before the page has been loaded, which allows remote attackers to spoof the URL in the address bar via the window.open and location.replace HTML parameters, which facilitates phishing attacks.
CVSS 2.0
Severity: LOW
Problem Type: CWE-362,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera before 7.54 allows remote attackers to modify properties and methods of the location object and execute Javascript to read arbitrary files from the client's local filesystem or display a false URL to the user.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-74,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera offers an Open button to verify that a user wishes to execute a downloaded file, which allows user-assisted remote attackers to construct a race condition that tricks a user into clicking Open via a request for a different mouse or keyboard action very shortly before the Open dialog appears. NOTE: this is a different issue than CVE-2005-2407.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-362,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mozilla | mozilla | - |
| opera | opera_browser | - |
The International Domain Name (IDN) support in Firefox 1.0, Camino .8.5, and Mozilla before 1.7.6 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera_software | opera_web_browser | 7.54 |
| mozilla | mozilla | * |
| opera | opera_browser | * |
| mozilla | camino | 0.8.5 |
| mozilla | firefox | 1.0 |
| omnigroup | omniweb | 5 |
The International Domain Name (IDN) support in Opera 7.54 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
The International Domain Name (IDN) support in Epiphany allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mozilla | mozilla | * |
| opera | opera_browser | * |
| mozilla | camino | 0.8.5 |
| omnigroup | omniweb | 5 |
| gnome | epiphany | * |
Opera 7.54 and earlier does not properly validate base64 encoded binary data in a data: (RFC 2397) URL, which causes the URL to be obscured in a download dialog, which may allow remote attackers to trick users into executing arbitrary code.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.54 and earlier on Gentoo Linux uses an insecure path for plugins, which could allow local users to gain privileges by inserting malicious libraries into the PORTAGE_TMPDIR (portage) temporary directory.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-427,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 8 Beta 3, when using first-generation vetted digital certificates, displays the Organizational information of an SSL certificate, which is easily spoofed and can facilitate phishing attacks.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 8.0 |
The XMLHttpRequest object in Opera 8.0 Final Build 1095 allows remote attackers to bypass access restrictions and perform unauthorized actions on other domains via a redirect.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-601,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Cross-site scripting (XSS) vulnerability in Opera 8.0 Final Build 1095 allows remote attackers to inject arbitrary web script or HTML via "javascript:" URLs when a new window or frame is opened, which allows remote attackers to bypass access restrictions and perform unauthorized actions on other domains.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 7.x and 8 before 8.01 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 8.01 allows remote attackers to cause a denial of service (CPU consumption) via a crafted JPEG image, as demonstrated using random.jpg.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-400,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 8.01 |
Opera 8.01, when the "Arial Unicode MS" font (ARIALUNI.TTF) is installed, does not properly handle extended ASCII characters in the file download dialog box, which allows remote attackers to spoof file extensions and possibly trick users into executing arbitrary code.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 8.01 |
Opera 8.01 allows remote attackers to conduct cross-site scripting (XSS) attacks or modify which files are uploaded by tricking a user into dragging an image that is a "javascript:" URI.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 8.01 |
A design error in Opera 8.01 and earlier allows user-assisted attackers to execute arbitrary code by overlaying a malicious new window above a file download dialog box, then tricking the user into double-clicking on the "Run" button, aka "link hijacking".
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-1021,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 7.21 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 6.05 |
Opera before 8.50 allows remote attackers to spoof the content type of files via a filename with a trailing "." (dot), which might allow remote attackers to trick users into processing dangerous content.
CVSS 2.0
Severity: LOW
Problem Type: CWE-74,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Unspecified "drag-and-drop vulnerability" in Opera Web Browser before 8.50 on Windows allows "unintentional file uploads."
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Multiple unspecified vulnerabilities in Opera 8.50 on Linux and Windows have unknown impact and attack vectors, related to (1) " handling of must-revalidate cache directive for HTTPS pages" or (2) a "display issue with cookie comment encoding."
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 8.50 |
Opera Web Browser 8.50 and 8.0 through 8.0.2 allows remote attackers to spoof the URL in the status bar via the title in an image in a link to a trusted site within a form to the malicious site.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 8.0 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.50 |
Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-74,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 8.50 allows remote attackers to cause a denial of service (crash) via a Java applet with a large string argument to the removeMember JNI method for the com.opera.JSObject class.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 8.50 |
Opera before 8.51, when running on Windows with Input Method Editor (IME) installed, allows remote attackers to cause a denial of service (persistent application crash) by bookmarking a site with a long title.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Integer signedness error in Opera before 8.54 allows remote attackers to execute arbitrary code via long values in a stylesheet attribute, which pass a length check. NOTE: a sign extension problem makes the attack easier with shorter strings.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-189,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 7.21 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 6.05 |
Integer overflow in Opera 8.54 and earlier allows remote attackers to execute arbitrary code via a JPEG image with large height and width values, which causes less memory to be allocated than intended.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-190,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 9 allows remote attackers to cause a denial of service (crash) via an A tag with an href attribute with a URL containing a long hostname, which triggers an out-of-bounds operation.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.0 |
Opera before 9.0 does not reset the SSL security bar after displaying a download dialog from an SSL-enabled website, which allows remote attackers to spoof a trusted SSL certificate from an untrusted website and facilitates phishing attacks.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 9 allows remote attackers to cause a denial of service (crash) via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera before 9.52 on Windows, Linux, FreeBSD, and Solaris, when processing custom shortcut and menu commands, can produce argument strings that contain uninitialized memory, which might allow user-assisted remote attackers to execute arbitrary code or conduct other attacks via vectors related to activation of a shortcut.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 8.8 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | 2.8 | 5.9 |
CVSS 2.0
Severity: HIGH
Problem Type: CWE-908,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict Transport Security (HSTS) includeSubDomains feature, aka a "cookie forcing" issue.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera, possibly 9.64 and earlier, allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-770,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera before 10.00 does not check all intermediate X.509 certificates for revocation, which makes it easier for remote SSL servers to bypass validation of the certificate chain via a revoked certificate.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N | 3.9 | 3.6 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-295,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera before 10.10 permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote attackers to obtain sensitive information via a crafted document.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera 10.50 allows remote attackers to obtain sensitive information via crafted XSLT constructs, which cause Opera to return cached contents of other pages.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 10.50 |
Integer overflow in Opera 10.10 through 10.50 allows remote attackers to execute arbitrary code via a large Content-Length value, which triggers a heap overflow.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-189,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 10.50 |
| opera | opera_browser | 10.10 |
Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via JavaScript that writes <marquee> sequences in an infinite loop, leading to attempted use of uninitialized memory. NOTE: this might overlap CVE-2006-6955.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera 9.52 executes a mail application in situations where an IMG element has a SRC attribute that is a redirect to a mailto: URL, which allows remote attackers to cause a denial of service (excessive application launches) via an HTML document with many images, a related issue to CVE-2010-0181.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.52 |
Opera 9.52 does not properly handle an IFRAME element with a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service (resource consumption) via an HTML document with many IFRAME elements.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.52 |
Opera 9.52 allows remote attackers to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid (1) news:// or (2) nntp:// URIs.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.52 |
Multiple unspecified vulnerabilities in Opera before 10.54 have unknown impact and attack vectors related to (1) "extremely severe," (2) "highly severe," (3) "moderately severe," and (4) "less severe" issues.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
Opera does not properly manage the address bar between the request to open a URL and the retrieval of the new document's content, which might allow remote attackers to conduct spoofing attacks via a crafted HTML document, a related issue to CVE-2010-1206.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.61 does not properly suppress clicks on download dialogs that became visible after a recent tab change, which allows remote attackers to conduct clickjacking attacks, and consequently execute arbitrary code, via vectors involving (1) closing a tab or (2) hiding a tab, a related issue to CVE-2005-2407.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-94,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.60 on Windows and Mac OS X does not properly prevent certain double-click operations from running a program located on a web site, which allows user-assisted remote attackers to execute arbitrary code via a crafted web page that bypasses a dialog.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Opera before 10.60 does not properly restrict certain interaction between plug-ins, file inputs, and the clipboard, which allows user-assisted remote attackers to trigger the uploading of arbitrary files via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.50 on Windows, before 10.52 on Mac OS X, and before 10.60 on UNIX platforms makes widget properties accessible to third-party domains, which allows remote attackers to obtain potentially sensitive information via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict certain uses of homograph characters in domain names, which makes it easier for remote attackers to spoof IDN domains via unspecified choices of characters.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict access to the full pathname of a file selected for upload, which allows remote attackers to obtain potentially sensitive information via unspecified DOM manipulations.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.60 allows remote attackers to bypass the popup blocker via a javascript: URL and a "fake click."
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.60 allows remote attackers to cause a denial of service (application hang) via an ended event handler that changes the SRC attribute of an AUDIO element.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.60 allows remote attackers to cause a denial of service (application hang) via certain HTML content that has an unclosed SPAN element with absolute positioning.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Cross-site scripting (XSS) vulnerability in Opera before 10.54 on Windows and Mac OS X, and before 10.11 on UNIX platforms, allows remote attackers to inject arbitrary web script or HTML via a data: URI, related to incorrect detection of the "opening site."
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.54 on Windows and Mac OS X does not properly enforce permission requirements for widget filesystem access and directory selection, which allows user-assisted remote attackers to create or modify arbitrary files, and consequently execute arbitrary code, via widget File I/O operations.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Heap-based buffer overflow in Opera before 10.61 allows remote attackers to execute arbitrary code or cause a denial of service (application crash or hang) via vectors related to HTML5 canvas painting operations that occur during the application of transformations.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The news-feed preview feature in Opera before 10.61 does not properly remove scripts, which allows remote attackers to force subscriptions to arbitrary feeds via crafted content.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 10.61 allows remote attackers to cause a denial of service (CPU consumption and application hang) via an animated PNG image.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 does not prevent interpretation of a cross-origin document as a CSS stylesheet when the document lacks a CSS token sequence, which allows remote attackers to obtain sensitive information via a crafted document.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 does not ensure that the portion of a URL shown in the Address Bar contains the beginning of the URL, which allows remote attackers to spoof URLs by changing a window's size.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 does not properly restrict web script in unspecified circumstances involving reloads and redirects, which allows remote attackers to spoof the Address Bar, conduct cross-site scripting (XSS) attacks, and possibly execute arbitrary code by leveraging the ability of a script to interact with a web page from (1) a different domain or (2) a different security context.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 does not properly verify the origin of video content, which allows remote attackers to obtain sensitive information by using a video stream as HTML5 canvas content.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 does not properly select the security context of JavaScript code associated with an error page, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 allows user-assisted remote web servers to cause a denial of service (application crash) by sending a redirect during the saving of a file.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 allows remote attackers to cause a denial of service (application crash) via a Flash movie with a transparent Window Mode (aka wmode) property, which is not properly handled during navigation away from the containing HTML document.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 10.63 allows remote attackers to cause a denial of service (memory corruption) by referencing an SVG document in an IMG element.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.00 does not properly constrain dialogs to appear on top of rendered documents, which makes it easier for remote attackers to trick users into interacting with a crafted web site that spoofs the (1) security information dialog or (2) download dialog.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.00 does not clear WAP WML form fields after manual navigation to a new web site, which allows remote attackers to obtain sensitive information via an input field that has the same name as an input field on a previously visited web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.00 has unknown impact and attack vectors, related to "a high severity issue."
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.00 does not properly handle security policies during updates to extensions, which might allow remote attackers to bypass intended access restrictions via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.00, when Opera Turbo is enabled, does not display a page's security indication, which makes it easier for remote attackers to spoof trusted content via a crafted web site.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.00, when Opera Turbo is used, does not properly present information about problematic X.509 certificates on https web sites, which might make it easier for remote attackers to spoof trusted content via a crafted web site.
CVSS 2.0
Severity: LOW
Problem Type: CWE-310,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in the auto-update functionality in Opera before 11.00 allows remote attackers to cause a denial of service (application crash) by triggering an Opera Unite update.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The default configuration of Opera before 11.00 enables WebSockets functionality, which has unspecified impact and remote attack vectors, possibly a related issue to CVE-2010-4508.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-16,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.00 on Windows does not properly implement the Insecure Third Party Module warning message, which might make it easier for user-assisted remote attackers to have an unspecified impact via a crafted module.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The Cascading Style Sheets (CSS) implementation in Opera 10.5 does not properly handle the :visited pseudo-class, which allows remote attackers to obtain sensitive information about visited web pages via a crafted HTML document, a related issue to CVE-2010-2264.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 10.50 |
The JavaScript implementation in Opera 10.5 does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 10.50 |
The downloads manager in Opera before 11.01 on Windows does not properly determine the pathname of the filesystem-viewing application, which allows user-assisted remote attackers to execute arbitrary code via a crafted web site that hosts an executable file.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The Cascading Style Sheets (CSS) Extensions for XML implementation in Opera before 11.01 recognizes links to javascript: URLs in the -o-link property, which makes it easier for remote attackers to bypass CSS filtering via a crafted URL.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML form with a select element that contains a large number of children.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.01 does not properly restrict the use of opera: URLs, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.01 does not properly handle redirections and unspecified other HTTP responses, which allows remote web servers to obtain sufficient access to local files to use these files as page resources, and consequently obtain potentially sensitive information from the contents of the files, via an unknown response manipulation.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The Delete Private Data feature in Opera before 11.01 does not properly implement the "Clear all email account passwords" option, which might allow physically proximate attackers to access an e-mail account via an unattended workstation.
CVSS 2.0
Severity: LOW
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.01 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by vkontakte.ru.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.01 does not properly implement Wireless Application Protocol (WAP) dropdown lists, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted WAP document.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.50 allows remote attackers to cause a denial of service (disk consumption) via invalid URLs that trigger creation of error pages.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The VEGAOpBitmap::AddLine function in Opera before 10.61 does not properly initialize memory during processing of the SIZE attribute of a SELECT element, which allows remote attackers to trigger an invalid memory write operation, and consequently cause a denial of service (application crash) or possibly execute arbitrary code, via a large integer attribute value.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.50 does not properly restrict data: URIs, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue."
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by progorod.ru.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The Array.prototype.join method in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a non-array object that contains initial holes.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The SVG implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving a path on which many characters are drawn.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application hang) via unknown content on a web page, as demonstrated by domiteca.com.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (memory consumption) via unknown content on a web page, as demonstrated by test262.ecmascript.org.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via web script that moves a (1) AUDIO element or (2) VIDEO element between windows.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a gradient with many stops, related to the implementation of CANVAS elements, SVG, and Cascading Style Sheets (CSS).
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving SVG animation.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to form layout.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in the Web Workers implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in the SVG BiDi implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash or hang) via unknown vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application hang) via a large table, which is not properly handled during a print preview.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a SELECT element that contains many OPTION elements.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.50 allows remote attackers to cause a denial of service (application crash) by using "injected script" to set the SRC attribute of an IFRAME element.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in the DOM implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by live.com.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors related to page unload.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.11 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by www.falk.de.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.11 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page that is not properly handled during a reload occurring after the opening of a popup of the Easy Sticky Note extension.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The Cascading Style Sheets (CSS) implementation in Opera before 11.11 does not properly handle the column-count property, which allows remote attackers to cause a denial of service (infinite repaint loop and application hang) via a web page, as demonstrated by an unspecified Wikipedia page.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.11 does not properly handle destruction of a Silverlight instance, which allows remote attackers to cause a denial of service (application crash) via a web page, as demonstrated by vod.onet.pl.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.11 allows remote attackers to cause a denial of service (application crash) via vectors involving a Certificate Revocation List (CRL) file, as demonstrated by the multicert-ca-02.crl file.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.10 allows remote attackers to hijack (1) searches and (2) customizations via unspecified third party applications.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The Cascading Style Sheets (CSS) implementation in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via vectors involving use of the :hover pseudo-class, in conjunction with transforms, for a floated element.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by a certain Tomato Firmware page.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by futura-sciences.com, seoptimise.com, and mitosyfraudes.org.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by games on zylom.com.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.10 does not properly handle hidden animated GIF images, which allows remote attackers to cause a denial of service (CPU consumption) via an image file that triggers continual repaints.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via an HTML document that has an empty parameter value for an embedded Java applet.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera 11.11 allows remote attackers to cause a denial of service (application crash) by setting the FACE attribute of a FONT element within an IFRAME element after changing the SRC attribute of this IFRAME element to an about:blank value.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.11 |
Opera before 11.51 allows remote attackers to cause an insecure site to appear secure or trusted via unspecified actions related to Extended Validation and loading content from trusted sources in an unspecified sequence that causes the address field and page information dialog to contain security information based on the trusted site, instead of the insecure site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-326,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows | - |
| redhat | enterprise_linux_server | 5.0 |
| redhat | enterprise_linux_workstation | 6.0 |
| siemens | simatic_rf615r_firmware | * |
| canonical | ubuntu_linux | 11.10 |
| redhat | enterprise_linux_desktop | 5.0 |
| opera | opera_browser | - |
| debian | debian_linux | 5.0 |
| haxx | curl | * |
| redhat | enterprise_linux_workstation | 5.0 |
| redhat | enterprise_linux_server | 6.0 |
| canonical | ubuntu_linux | 10.10 |
| chrome | - | |
| canonical | ubuntu_linux | 11.04 |
| siemens | simatic_rf68xr_firmware | * |
| mozilla | firefox | - |
| debian | debian_linux | 6.0 |
| microsoft | internet_explorer | - |
| redhat | enterprise_linux_desktop | 6.0 |
| canonical | ubuntu_linux | 10.04 |
| redhat | enterprise_linux_eus | 6.2 |
| redhat | enterprise_linux_server_aus | 6.2 |
Opera before 11.60 does not properly consider the number of . (dot) characters that conventionally exist in domain names of different top-level domains, which allows remote attackers to bypass the Same Origin Policy by leveraging access to a different domain name in the same top-level domain, as demonstrated by the .no or .uk domain.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
The JavaScript engine in Opera before 11.60 does not properly implement the in operator, which allows remote attackers to bypass the Same Origin Policy via vectors related to variables on different web sites.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in Opera before 11.60 has unknown impact and attack vectors, related to a "moderately severe issue."
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.60 does not properly handle certificate revocation, which has unspecified impact and remote attack vectors related to "corner cases."
CVSS 2.0
Severity: HIGH
Problem Type: CWE-310,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Dragonfly in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unspecified content on a web page, as demonstrated by forbes.com.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Unspecified vulnerability in the Web Workers implementation in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unknown vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.60 allows remote attackers to cause a denial of service (CPU and memory consumption) via unspecified content on a web page, as demonstrated by a page under the cisco.com home page.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-399,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera 11.60 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
Multiple integer overflows in Opera 11.60 and earlier allow remote attackers to cause a denial of service (application crash) via a large integer argument to the (1) Int32Array, (2) Float32Array, (3) Float64Array, (4) Uint32Array, (5) Int16Array, or (6) ArrayBuffer function. NOTE: the vendor reportedly characterizes this as "a stability issue, not a security issue."
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-189,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 9.63 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-310,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
Opera before 11.62 allows user-assisted remote attackers to trick users into downloading and executing arbitrary files via a small window for the download dialog.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-94,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.62 does not ensure that a dialog window is placed on top of content windows, which makes it easier for user-assisted remote attackers to trick users into downloading and executing arbitrary files via a download dialog located under other windows.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.62 allows remote attackers to bypass the Same Origin Policy via the (1) history.pushState and (2) history.replaceState functions in conjunction with cross-domain frames, leading to unintended read access to history.state information.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.62 allows remote attackers to spoof the address field by triggering the launch of a dialog window associated with a different domain.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.62 allows remote attackers to spoof the address field by triggering a page reload followed by a redirect to a different domain.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.62 on Mac OS X allows remote attackers to spoof the address field and security dialogs via crafted styling that causes page content to be displayed outside of the intended content area.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.62 on UNIX uses world-readable permissions for temporary files during printing, which allows local users to obtain sensitive information by reading these files.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.62 on UNIX, when used in conjunction with an unspecified printing application, allows local users to overwrite arbitrary files via a symlink attack on a temporary file during printing.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 10.10 |
Opera before 11.65 does not ensure that keyboard sequences are associated with a visible window, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary code via a crafted web site, related to a "hidden keyboard navigation" issue.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
Opera before 11.65 does not properly restrict the opening of a pop-up window in response to the first click of a double-click action, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary code via a crafted web site.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
Opera before 11.65 does not properly restrict the reading of JSON strings, which allows remote attackers to perform cross-domain loading of JSON resources and consequently obtain sensitive information via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during unusually timed changes to this field, which makes it easier for user-assisted remote attackers to conduct spoofing attacks via vectors involving navigation, reloads, and redirects.
CVSS 2.0
Severity: LOW
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Unspecified vulnerability in Opera before 12.00 on Mac OS X has unknown impact and attack vectors, related to a "moderate severity issue."
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during blocked navigation, which makes it easier for remote attackers to conduct spoofing attacks by detecting and preventing attempts to load a different web page.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 11.64 does not properly allocate memory for URL strings, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted string.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
Opera before 12.00 Beta allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page that is not properly handled during a reload, as demonstrated by a "multiple origin camera test" page.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 12.00 Beta allows remote attackers to cause a denial of service (application crash) via a web page that contains invalid character encodings.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 12.00 Beta allows remote attackers to cause a denial of service (application hang) via an absolutely positioned wrap=off TEXTAREA element located next to an "overflow: auto" block element.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 12.00 Beta allows remote attackers to cause a denial of service (application crash) via crafted characters in domain names, as demonstrated by "IDNA2008 tests."
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 12.00 Beta allows user-assisted remote attackers to cause a denial of service (application hang) via JavaScript code that changes a form before submission.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 12.00 Beta allows remote attackers to cause a denial of service (memory consumption or application hang) via an IFRAME element that uses the src="#" syntax to embed a parent document.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 12.00 Beta allows remote attackers to cause a denial of service (application crash) via crafted WebGL content, as demonstrated by a codeflow.org WebGL demo.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | * |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by causing a failure of a single checking service.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via vectors involving an unspecified sequence of loading of documents and loading of data: URLs.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript code that overrides methods of unspecified native objects in documents that have different origins.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.10 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a malformed SVG image.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-94,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.10 does not properly handle incorrect size data in a WebP image, which allows remote attackers to obtain potentially sensitive information from process memory by using a crafted image as the fill pattern for a canvas.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.10 follows Internet shortcuts that are referenced by a (1) IMG element or (2) other inline element, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site, as exploited in the wild in November 2012.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Heap-based buffer overflow in Opera before 12.11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a long HTTP response.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.11 allows remote attackers to determine the existence of arbitrary local files via vectors involving web script in an error page.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.12 does not properly allocate memory for GIF images, which allows remote attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a malformed image.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.12 allows remote attackers to spoof the address field via a high rate of HTTP requests.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users to obtain sensitive information by reading a (1) cache file, (2) password file, or (3) configuration file, or (4) possibly gain privileges by modifying or overwriting a configuration file.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
The TLS implementation in Opera before 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-310,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 12.00 |
| opera | opera_browser | * |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 12.02 |
Opera before 12.13 allows remote attackers to execute arbitrary code via vectors involving DOM events.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-94,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 12.00 |
| opera | opera_browser | * |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 12.02 |
Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-94,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 12.00 |
| opera | opera_browser | * |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 12.02 |
Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a crafted web site that triggers a CORS request.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-352,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 12.00 |
| opera | opera_browser | * |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 12.02 |
Opera before 12.15 does not properly block top-level domains in Set-Cookie headers, which allows remote attackers to obtain sensitive information by leveraging control of a different web site in the same top-level domain.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 11.67 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 10 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 12.12 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 12.13 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 11.00b1 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Unspecified vulnerability in Opera before 12.15 has unknown impact and attack vectors, related to a "moderately severe issue."
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 11.67 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 12.12 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 12.13 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
Cross-site scripting (XSS) vulnerability in Opera before 15.00 allows remote attackers to inject arbitrary web script or HTML by leveraging UTF-8 encoding.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.10 |
| opera | opera_browser | 3.50 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 7.01 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 9.27 |
| opera | opera_browser | 11.67 |
| opera | opera_browser | 9.02 |
| opera | opera_browser | 8.01 |
| opera | opera_browser | 8.52 |
| opera | opera_browser | 9.62 |
| opera | opera_browser | 2.12 |
| opera | opera_browser | 6.0 |
| opera | opera_browser | 4.00 |
| opera | opera_browser | 9.26 |
| opera | opera_browser | 9.52 |
| opera | opera_browser | 9.63 |
| opera | opera_browser | 9.50 |
| opera | opera_browser | 6.02 |
| opera | opera_browser | 8.50 |
| opera | opera_browser | 7.11 |
| opera | opera_browser | 9.64 |
| opera | opera_browser | 6.01 |
| opera | opera_browser | * |
| opera | opera_browser | 3.21 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 5.10 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 12.12 |
| opera | opera_browser | 9.51 |
| opera | opera_browser | 3.10 |
| opera | opera_browser | 12.13 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 3.62 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 4.02 |
| opera | opera_browser | 6.04 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 8.54 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 7.51 |
| opera | opera_browser | 2.00 |
| opera | opera_browser | 7.02 |
| opera | opera_browser | 7.52 |
| opera | opera_browser | 3.60 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 9.24 |
| opera | opera_browser | 7.21 |
| opera | opera_browser | 8.53 |
| opera | opera_browser | 7.0 |
| opera | opera_browser | 9.22 |
| opera | opera_browser | 7.50 |
| opera | opera_browser | 5.02 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 6.03 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 9.20 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 5.0 |
| opera | opera_browser | 3.00 |
| opera | opera_browser | 6.06 |
| opera | opera_browser | 7.53 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 7.22 |
| opera | opera_browser | 7.03 |
| opera | opera_browser | 12.14 |
| opera | opera_browser | 7.54 |
| opera | opera_browser | 7.23 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 9.21 |
| opera | opera_browser | 9.25 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 11.52 |
| opera | opera_browser | 8.02 |
| opera | opera_browser | 9.0 |
| opera | opera_browser | 5.11 |
| opera | opera_browser | 9.01 |
| opera | opera_browser | 6.1 |
| opera | opera_browser | 3.61 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 6.11 |
| opera | opera_browser | 8.51 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 7.10 |
| opera | opera_browser | 2.10 |
| opera | opera_browser | 9.61 |
| opera | opera_browser | 5.12 |
| opera | opera_browser | 9.23 |
| opera | opera_browser | 3.51 |
| opera | opera_browser | 7.60 |
| opera | opera_browser | 9.10 |
| opera | opera_browser | 6.12 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 9.12 |
| opera | opera_browser | 7.20 |
| opera | opera_browser | 4.01 |
| opera | opera_browser | 8.0 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 9.60 |
| opera | opera_browser | 6.05 |
| opera | opera_browser | 11.62 |
The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.52 |
| opera | opera_browser | * |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 12.12 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 16.00 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 12.15 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 11.67 |
| opera | opera_browser | 12.13 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 15.00 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 12.14 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
Opera before 19 on Mac OS X allows user-assisted remote attackers to spoof the address bar via vectors involving a drag-and-drop operation.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 11.52 |
| opera | opera_browser | * |
| opera | opera_browser | 11.10 |
| opera | opera_browser | 10.11 |
| opera | opera_browser | 11.01 |
| opera | opera_browser | 10.01 |
| opera | opera_browser | 10.60 |
| opera | opera_browser | 10.62 |
| opera | opera_browser | 12.12 |
| opera | opera_browser | 11.66 |
| opera | opera_browser | 16.00 |
| opera | opera_browser | 17.00 |
| opera | opera_browser | 10.54 |
| opera | opera_browser | 10.20 |
| opera | opera_browser | 12.15 |
| opera | opera_browser | 10.50 |
| opera | opera_browser | 11.67 |
| opera | opera_browser | 12.13 |
| opera | opera_browser | 10.51 |
| opera | opera_browser | 10.61 |
| opera | opera_browser | 11.11 |
| opera | opera_browser | 11.52.1100 |
| opera | opera_browser | 1.00 |
| opera | opera_browser | 11.60 |
| opera | opera_browser | 12.01 |
| opera | opera_browser | 11.65 |
| opera | opera_browser | 10.53 |
| opera | opera_browser | 11.50 |
| opera | opera_browser | 10.52 |
| opera | opera_browser | 10.00 |
| opera | opera_browser | 11.00 |
| opera | opera_browser | 15.00 |
| opera | opera_browser | 10.63 |
| opera | opera_browser | 12.11 |
| opera | opera_browser | 11.64 |
| opera | opera_browser | 12.02 |
| opera | opera_browser | 12.14 |
| opera | opera_browser | 12.00 |
| opera | opera_browser | 12.10 |
| opera | opera_browser | 11.61 |
| opera | opera_browser | 11.51 |
| opera | opera_browser | 10.10 |
| opera | opera_browser | 11.62 |
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-310,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| apple | iphone_os | * |
| canonical | ubuntu_linux | 14.10 |
| canonical | ubuntu_linux | 14.04 |
| suse | linux_enterprise_server | 11.0 |
| apple | mac_os_x | * |
| oracle | jdk | 1.8.0 |
| mozilla | firefox_os | 2.2 |
| mozilla | network_security_services | 3.19 |
| mozilla | seamonkey | 2.35 |
| opera | opera_browser | - |
| suse | suse_linux_enterprise_server | 12 |
| oracle | jdk | 1.6.0 |
| oracle | jre | 1.8.0 |
| mozilla | firefox | 38.1.0 |
| chrome | - | |
| oracle | jrockit | r28.3.6 |
| canonical | ubuntu_linux | 15.04 |
| mozilla | firefox | - |
| suse | linux_enterprise_software_development_kit | 12 |
| mozilla | firefox_esr | 38.1.0 |
| apple | safari | - |
| mozilla | thunderbird | 31.8 |
| hp | hp-ux | b.11.31 |
| oracle | sparc-opl_service_processor | * |
| mozilla | firefox | 39.0 |
| openssl | openssl | * |
| mozilla | thunderbird | 38.1 |
| oracle | jre | 1.7.0 |
| oracle | jdk | 1.7.0 |
| debian | debian_linux | 8.0 |
| ibm | content_manager | 8.5 |
| oracle | jre | 1.6.0 |
| mozilla | firefox_esr | 31.8 |
| microsoft | internet_explorer | - |
| suse | linux_enterprise_desktop | 12 |
| canonical | ubuntu_linux | 12.04 |
| debian | debian_linux | 7.0 |
Opera Mini 13 and Opera Stable 36 allow remote attackers to spoof the displayed URL via a crafted HTML document, related to the about:blank URL.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 6.1 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N | 2.8 | 2.7 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-601,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 36.0 |
| opera | opera_mini | 13.00 |
Unspecified vulnerability in Opera Mail before 2016-02-16 on Windows allows user-assisted remote attackers to execute arbitrary code via a crafted e-mail message.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-284,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_mail | - |
Characters from languages are such as Arabic, Hebrew are displayed from RTL (Right To Left) order in Opera 37.0.2192.105088 for Android, due to mishandling of several unicode characters such as U+FE70, U+0622, U+0623 etc and how they are rendered combined with (first strong character) such as an IP address or alphabet could lead to a spoofed URL. It was noticed that by placing neutral characters such as "/", "?" in filepath causes the URL to be flipped and displayed from Right To Left. However, in order for the URL to be spoofed the URL must begin with an IP address followed by neutral characters as omnibox considers IP address to be combination of punctuation and numbers and since LTR (Left To Right) direction is not properly enforced, this causes the entire URL to be treated and rendered from RTL (Right To Left). However, it doesn't have be an IP address, what matters is that first strong character (generally, alphabetic character) in the URL must be an RTL character.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-601,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 37.0.2192.105088 |
The HTTPS protocol does not consider the role of the TCP congestion window in providing information about content length, which makes it easier for remote attackers to obtain cleartext data by leveraging a web-browser configuration in which third-party cookies are sent, aka a "HEIST" attack.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| apple | safari | * |
| microsoft | edge | - |
| chrome | - | |
| mozilla | firefox | * |
| microsoft | internet_explorer | - |
| opera | opera | - |
The HTTP/2 protocol does not consider the role of the TCP congestion window in providing information about content length, which makes it easier for remote attackers to obtain cleartext data by leveraging a web-browser configuration in which third-party cookies are sent, aka a "HEIST" attack.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| apple | safari | * |
| microsoft | edge | - |
| chrome | - | |
| mozilla | firefox | * |
| opera | opera_browser | - |
| microsoft | internet_explorer | - |
The Opera Mini application 47.1.2249.129326 for Android allows remote attackers to spoof the Location Permission dialog via a crafted web site.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_mini | 47.1.2249.129326 |
Opera before 57.0.3098.106 is vulnerable to a DLL Search Order hijacking attack where an attacker can send a ZIP archive composed of an HTML page along with a malicious DLL to the target. Once the document is opened, it may allow the attacker to take full control of the system from any location within the system. The issue lies in the loading of the shcore.dll and dcomp.dll files: these files are being searched for by the program in the same system-wide directory where the HTML file is executed.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 7.8 | HIGH | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | 1.8 | 5.9 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-426,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | * |
In the WebRTC component in Opera 51.0.2830.55, after visiting a web site that attempts to gather complete client information (such as https://ip.voidsec.com), the browser can disclose a private IP address in a STUN request.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_browser | 51.0.2830.55 |
Opera through 53 on Android allows Address Bar Spoofing. Characters from several languages are displayed in Right-to-Left order, due to mishandling of several Unicode characters. The rendering mechanism, in conjunction with the "first strong character" concept, may improperly operate on a numerical IP address or an alphabetic string, leading to a spoofed URL.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 4.3 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | 2.8 | 1.4 |
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera | 52.1.2517.139570 |
The Opera Mini application through 16.0.14 for iOS has a UXSS vulnerability that can be triggered by performing navigation to a javascript: URL.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | mini | * |
Opera Mini for Android allows attackers to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of malicious%E2%80%AEtxt.apk as maliciouskpa.txt. This affects 44.1.2254.142553, 44.1.2254.142659, and 44.1.2254.143214.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 3.9 | 5.9 |
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | mini | 44.1.2254.142553 |
| opera | mini | 44.1.2254.142659 |
| opera | mini | 44.1.2254.143214 |
Opera for Android before 54.0.2669.49432 is vulnerable to a sandboxed cross-origin iframe bypass attack. By using a service working inside a sandboxed iframe it is possible to bypass the normal sandboxing attributes. This allows an attacker to make forced redirections without any user interaction from a third-party context.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.5 | MEDIUM | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N | 1.8 | 3.6 |
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera | * |
Opera Touch for iOS before version 2.4.5 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an address of a different page. This may allow the malicious page to impersonate another page and trick a user into providing sensitive data.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 4.3 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | 2.8 | 1.4 |
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_touch | * |
URLs using “javascript:” have the protocol removed when pasted into the address bar to protect users from cross-site scripting (XSS) attacks, but in certain circumstances this removal was not performed. This could allow users to be socially engineered to run an XSS attack against themselves. This vulnerability affects Opera for Android versions below 61.0.3076.56532.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 6.1 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N | 2.8 | 2.7 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera | * |
Opera Mini for Android below 53.1 displays URL left-aligned in the address field. This allows a malicious attacker to craft a URL with a long domain name, e.g. www.safe.opera.com.attacker.com. With the URL being left-aligned, the user will only see the front part (e.g. www.safe.opera.com…) The exact amount depends on the phone screen size but the attacker can craft a number of different domains and target different phones. Starting with version 53.1 Opera Mini displays long URLs with the top-level domain label aligned to the right of the address field which mitigates the issue.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.3 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N | 3.9 | 1.4 |
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| opera | opera_mini | * |