Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-4142

Опубликовано: 06 авг. 2012
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, ignores some characters in HTML documents in unspecified circumstances, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted document.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
Версия до 12.00 (включая)
cpe:2.3:a:opera:opera_browser:12.00:beta:*:*:*:*:*:*

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
Версия до 11.65 (включая)
cpe:2.3:a:opera:opera_browser:10.00:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.00:beta1:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.00:beta2:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.00:beta3:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.01:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.10:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.10:beta1:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.11:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.50:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.50:beta1:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.50:beta2:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.51:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.52:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.52:beta1:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.52:beta2:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.53:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.53:b:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.53:beta1:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.54:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.60:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.60:beta1:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.61:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.62:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.63:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.00:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.00:beta:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.01:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.10:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.10:beta:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.11:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.50:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.50:beta:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.51:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.52:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.52.1100:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.60:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.60:beta:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.61:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.62:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:11.64:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:12.00:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:12.00:beta:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

EPSS

Процентиль: 61%
0.00418
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

github логотип

GHSA-55h8-9r93-gr3v

github
больше 3 лет назад

Opera before 12.01 on Windows and UNIX, and before 11.66 and 12.x before 12.01 on Mac OS X, ignores some characters in HTML documents in unspecified circumstances, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted document.

EPSS

Процентиль: 61%
0.00418
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79