CVE-2012-3560 — Browser vulnerability

CWE-2645 documents4 sources

Severity

4.3MEDIUMNVD

EPSS

0.5%

top 34.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Opera Browser

Timeline

PublishedJun 14

Latest updateMay 17

Description

Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during blocked navigation, which makes it easier for remote attackers to conduct spoofing attacks by detecting and preventing attempts to load a different web page.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDopera/opera_browser11.64+81

🔴Vulnerability Details

GHSA

GHSA-qqh8-49g9-w933: Opera before 11↗2022-05-17

▶

CVEList

CVE-2012-3560: Opera before 11↗2012-06-14

▶

💬Community

Bugzilla

CVE-2012-2749 mysql: crash caused by wrong calculation of key length for sort order index↗2012-06-20

▶

Bugzilla

CVE-2012-2102 mysql: Server crash on HANDLER READ NEXT after DELETE↗2012-04-13

▶