Opera

Opera Browser

282 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4

CVE-2011-4682

  • EPSS 0.13%
  • Veröffentlicht 07.12.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The JavaScript engine in Opera before 11.60 does not properly implement the in operator, which allows remote attackers to bypass the Same Origin Policy via vectors related to variables on different web sites.

10

CVE-2011-4683

  • EPSS 0.54%
  • Veröffentlicht 07.12.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Opera before 11.60 has unknown impact and attack vectors, related to a "moderately severe issue."

10

CVE-2011-4684

  • EPSS 6.8%
  • Veröffentlicht 07.12.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Opera before 11.60 does not properly handle certificate revocation, which has unspecified impact and remote attack vectors related to "corner cases."

5

CVE-2011-4685

  • EPSS 0.86%
  • Veröffentlicht 07.12.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Dragonfly in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unspecified content on a web page, as demonstrated by forbes.com.

5

CVE-2011-4686

  • EPSS 0.76%
  • Veröffentlicht 07.12.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the Web Workers implementation in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unknown vectors.

5

CVE-2011-4687

  • EPSS 0.76%
  • Veröffentlicht 07.12.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Opera before 11.60 allows remote attackers to cause a denial of service (CPU and memory consumption) via unspecified content on a web page, as demonstrated by a page under the cisco.com home page.

4.3

CVE-2010-5068

Exploit
  • EPSS 0.23%
  • Veröffentlicht 07.12.2011 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Cascading Style Sheets (CSS) implementation in Opera 10.5 does not properly handle the :visited pseudo-class, which allows remote attackers to obtain sensitive information about visited web pages via a crafted HTML document, a related issue to CV...

5

CVE-2010-5072

Exploit
  • EPSS 0.23%
  • Veröffentlicht 07.12.2011 19:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The JavaScript implementation in Opera 10.5 does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling...

4.3

CVE-2011-3388

  • EPSS 1.02%
  • Veröffentlicht 06.09.2011 19:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Opera before 11.51 allows remote attackers to cause an insecure site to appear secure or trusted via unspecified actions related to Extended Validation and loading content from trusted sources in an unspecified sequence that causes the address field ...

4.3

CVE-2011-3389

  • EPSS 4.51%
  • Veröffentlicht 06.09.2011 19:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man...