Opera Browser 12.10 beta
Approved changes feed: RSS · Atom
cpe:2.3:a:opera:opera_browser:12.10:beta:*:*:*:*:*:*
part: a version: 12.10 update: beta
| Vendor | Opera (59f0a105-cac9-5c1f-b0fb-85549d53b66c) |
|---|---|
| Product | Opera Browser (d93a8e16-25c9-511e-b4e8-687ae7be9e55) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2014-1870 |
vulnerable | 2026-06-08 05:05:26.526637 |
Details available
Opera before 19 on Mac OS X allows user-assisted remote attackers to spoof the address bar via vectors involving a drag-and-drop operation.
Published: 2014-02-06T23:00:00.000Z
Updated: 2024-09-16T16:23:52.351Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-0815 |
vulnerable | 2026-06-08 05:05:14.539488 |
Details available
The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies.
Published: 2014-02-06T22:00:00.000Z
Updated: 2024-08-06T09:27:20.287Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-4705 |
vulnerable | 2026-06-08 05:04:49.390905 |
Details available
Cross-site scripting (XSS) vulnerability in Opera before 15.00 allows remote attackers to inject arbitrary web script or HTML by leveraging UTF-8 encoding.
Published: 2013-09-13T10:00:00.000Z
Updated: 2024-09-17T01:41:27.862Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-3211 |
vulnerable | 2026-06-08 05:04:30.436754 |
Details available
Unspecified vulnerability in Opera before 12.15 has unknown impact and attack vectors, related to a "moderately severe issue."
Published: 2013-04-19T10:00:00.000Z
Updated: 2024-09-16T21:56:26.806Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-3210 |
vulnerable | 2026-06-08 05:04:30.426515 |
Details available
Opera before 12.15 does not properly block top-level domains in Set-Cookie headers, which allows remote attackers to obtain sensitive information by leveraging control of a different web site in the same top-level domain.
Published: 2013-04-19T10:00:00.000Z
Updated: 2024-09-16T23:15:57.128Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-1639 |
vulnerable | 2026-06-08 05:03:55.284708 |
Details available
Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a crafted web site that triggers a CORS request.
Published: 2013-02-08T11:00:00.000Z
Updated: 2024-08-06T15:13:31.290Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-1638 |
vulnerable | 2026-06-08 05:03:55.284245 |
Details available
Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document.
Published: 2013-02-08T11:00:00.000Z
Updated: 2024-08-06T15:13:32.831Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-1637 |
vulnerable | 2026-06-08 05:03:55.283783 |
Details available
Opera before 12.13 allows remote attackers to execute arbitrary code via vectors involving DOM events.
Published: 2013-02-08T11:00:00.000Z
Updated: 2024-08-06T15:13:31.311Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-1618 |
vulnerable | 2026-06-08 05:03:54.960832 |
Details available
The TLS implementation in Opera before 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.
Published: 2013-02-08T19:00:00.000Z
Updated: 2024-08-06T15:04:49.563Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-6472 |
vulnerable | 2026-06-08 05:03:00.459196 |
Details available
Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users to obtain sensitive information by reading a (1) cache file, (2) password file, or (3) configuration file, or (4) possibly gain privileges by modifying or overwriting a configuration file.
Published: 2013-01-02T11:00:00.000Z
Updated: 2024-09-16T19:36:47.778Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-6471 |
vulnerable | 2026-06-08 05:03:00.455356 |
Details available
Opera before 12.12 allows remote attackers to spoof the address field via a high rate of HTTP requests.
Published: 2013-01-02T11:00:00.000Z
Updated: 2024-09-17T01:02:05.539Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-6470 |
vulnerable | 2026-06-08 05:03:00.451391 |
Details available
Opera before 12.12 does not properly allocate memory for GIF images, which allows remote attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a malformed image.
Published: 2013-01-02T11:00:00.000Z
Updated: 2024-09-16T16:13:30.481Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-6469 |
vulnerable | 2026-06-08 05:03:00.419296 |
Details available
Opera before 12.11 allows remote attackers to determine the existence of arbitrary local files via vectors involving web script in an error page.
Published: 2013-01-02T11:00:00.000Z
Updated: 2024-08-06T21:28:39.933Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-6468 |
vulnerable | 2026-06-08 05:03:00.415023 |
Details available
Heap-based buffer overflow in Opera before 12.11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a long HTTP response.
Published: 2013-01-02T11:00:00.000Z
Updated: 2024-08-06T21:28:39.954Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.