CVE-2007-6524Sensitive Information Exposure in Browser

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
7.8HIGHNVD
EPSS
1.3%
top 20.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedDec 24
Latest updateMay 1

Description

Opera before 9.25 allows remote attackers to obtain potentially sensitive memory contents via a crafted bitmap (BMP) file, as demonstrated using a CANVAS element and JavaScript in an HTML document for copying these contents from 9.50 beta, a related issue to CVE-2008-0420.

CVSS vector

AV:N/AC:L/C:C/I:N/A:NExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDopera/opera_browser9.24+48

Patches

Patch: secunia.comPatch: www.opera.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-3m39-96f9-rqqr: Opera before 92022-05-01
CVEList
CVE-2007-6524: Opera before 92007-12-24
CVE-2007-6524 — Sensitive Information Exposure | cvebase