CVE-2012-3557Browser vulnerability

CWE-2644 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 40.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedJun 14
Latest updateMay 17

Description

Opera before 11.65 does not properly restrict the reading of JSON strings, which allows remote attackers to perform cross-domain loading of JSON resources and consequently obtain sensitive information via a crafted web site.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDopera/opera_browser11.62+80

🔴Vulnerability Details

2
GHSA
GHSA-5866-mfc4-q5hx: Opera before 112022-05-17
CVEList
CVE-2012-3557: Opera before 112012-06-14

💥Exploits & PoCs

1
Exploit-DB
TVMOBiLi 2.1.0.3557 - Denial of Service2012-12-09
CVE-2012-3557 — Opera Browser vulnerability | cvebase