CVE-2009-3045Browser vulnerability

CWE-3103 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.3%
top 51.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedSep 2
Latest updateMay 2

Description

Opera before 10.00 trusts root X.509 certificates signed with the MD2 algorithm, which makes it easier for man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted server certificate.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDopera/opera_browser10.00+24

🔴Vulnerability Details

2
GHSA
GHSA-gchf-737v-546c: Opera before 102022-05-02
CVEList
CVE-2009-3045: Opera before 102009-09-02
CVE-2009-3045 — Opera Browser vulnerability | cvebase