cbcvebase.
CVE-2013-1618
published 2013-02-08

CVE-2013-1618: The TLS implementation in Opera before 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed…

PriorityP420medium4CVSS 2.0
AVNACHAuNCPIPAN
EPSS
2.16%
79.9th percentile
The TLS implementation in Opera before 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.

Affected

6 ranges
VendorProductVersion rangeFixed in
operaopera_browser<= 12.12
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
operaopera_browser
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.