CVE-2012-6462Browser vulnerability

CWE-2643 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.2%
top 59.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedJan 2
Latest updateMay 17

Description

Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDopera/opera_browser12.10+106

🔴Vulnerability Details

2
GHSA
GHSA-hm99-p7fw-6wr3: Opera before 122022-05-17
CVEList
CVE-2012-6462: Opera before 122013-01-02
CVE-2012-6462 — Opera Browser vulnerability | cvebase