CVE-2010-5072Browser vulnerability

CWE-2643 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.2%
top 54.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedDec 7
Latest updateMay 17

Description

The JavaScript implementation in Opera 10.5 does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-fhcx-6h53-5frf: The JavaScript implementation in Opera 102022-05-17
CVEList
CVE-2010-5072: The JavaScript implementation in Opera 102011-12-07
CVE-2010-5072 — Opera Browser vulnerability | cvebase