CVE-2008-4198 — Browser vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.0%

top 23.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Opera Browser

Timeline

PublishedSep 27

Latest updateMay 2

Description

Opera before 9.52, when rendering an http page that has loaded an https page into a frame, displays a padlock icon and offers a security information dialog reporting a secure connection, which might allow remote attackers to trick a user into performing unsafe actions on the http page.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDopera/opera_browser9.51+53

🔴Vulnerability Details

GHSA

GHSA-6gww-pqcg-wr93: Opera before 9↗2022-05-02

▶

CVEList

CVE-2008-4198: Opera before 9↗2008-09-27

▶