Vulnerabilities > Opera > Critical

DATE CVE VULNERABILITY TITLE RISK
2012-06-14 CVE-2012-3559 Unspecified vulnerability in Opera Browser
Unspecified vulnerability in Opera before 12.00 on Mac OS X has unknown impact and attack vectors, related to a "moderate severity issue."
network
low complexity
opera apple
critical
 10.0
10
2012-06-14 CVE-2012-3556 Improper Input Validation vulnerability in Opera Browser
Opera before 11.65 does not properly restrict the opening of a pop-up window in response to the first click of a double-click action, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary code via a crafted web site.
network
opera CWE-20
critical
 9.3
9.3
2011-12-07 CVE-2011-4684 Cryptographic Issues vulnerability in Opera Browser
Opera before 11.60 does not properly handle certificate revocation, which has unspecified impact and remote attack vectors related to "corner cases."
network
low complexity
opera CWE-310
critical
 10.0
10
2011-12-07 CVE-2011-4683 Remote Security vulnerability in Opera Web Browser
Unspecified vulnerability in Opera before 11.60 has unknown impact and attack vectors, related to a "moderately severe issue."
network
low complexity
opera
critical
 10.0
10
2011-07-01 CVE-2011-2628 Improper Input Validation vulnerability in Opera Browser
Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors related to page unload.
network
low complexity
opera CWE-20
critical
 10.0
10
2011-07-01 CVE-2011-2610 Security vulnerability in Opera Web Browser
Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue."
network
low complexity
opera
critical
 10.0
10
2010-12-22 CVE-2010-4587 Unspecified vulnerability in Opera Browser
Opera before 11.00 on Windows does not properly implement the Insecure Third Party Module warning message, which might make it easier for user-assisted remote attackers to have an unspecified impact via a crafted module.
network
opera microsoft
critical
 9.3
9.3
2010-12-22 CVE-2010-4586 Configuration vulnerability in Opera Browser
The default configuration of Opera before 11.00 enables WebSockets functionality, which has unspecified impact and remote attack vectors, possibly a related issue to CVE-2010-4508.
network
low complexity
opera CWE-16
critical
 10.0
10
2010-12-22 CVE-2010-4581 Unspecified vulnerability in Opera Browser
Unspecified vulnerability in Opera before 11.00 has unknown impact and attack vectors, related to "a high severity issue."
network
low complexity
opera
critical
 10.0
10
2010-10-21 CVE-2010-4045 Permissions, Privileges, and Access Controls vulnerability in Opera Browser
Opera before 10.63 does not properly restrict web script in unspecified circumstances involving reloads and redirects, which allows remote attackers to spoof the Address Bar, conduct cross-site scripting (XSS) attacks, and possibly execute arbitrary code by leveraging the ability of a script to interact with a web page from (1) a different domain or (2) a different security context.
network
opera CWE-264
critical
 9.3
9.3