cbcvebase.
CVE-2009-3044
published 2009-09-02

CVE-2009-3044: Opera before 10.00 does not properly handle a (1) '\0' character or (2) invalid wildcard character in a domain name in the subject's Common Name (CN) field of…

PriorityP421medium5CVSS 2.0
AVNACLAuNCNIPAN
EPSS
1.01%
58.6th percentile
Opera before 10.00 does not properly handle a (1) '\0' character or (2) invalid wildcard character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.

Affected

72 ranges· showing 25
VendorProductVersion rangeFixed in
operaopera_browser<= 10.00
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.