CVE-2010-4043 — Browser vulnerability

CWE-2643 documents3 sources

Severity

4.3MEDIUMNVD

EPSS

0.9%

top 24.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Opera Browser

Timeline

PublishedOct 21

Latest updateMay 17

Description

Opera before 10.63 does not prevent interpretation of a cross-origin document as a CSS stylesheet when the document lacks a CSS token sequence, which allows remote attackers to obtain sensitive information via a crafted document.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDopera/opera_browser10.62+70

🔴Vulnerability Details

GHSA

GHSA-9gjg-9gc5-48xf: Opera before 10↗2022-05-17

▶

CVEList

CVE-2010-4043: Opera before 10↗2010-10-21

▶