exploitDog

CVE-2013-1638

Опубликовано: 08 фев. 2013

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document.

Ссылки

http://lists.opensuse.org/opensuse-updates/2013-02/msg00038.html
http://www.opera.com/docs/changelogs/unified/1213/
Vendor Advisory
http://www.opera.com/support/kb/view/1043/
Vendor Advisory
http://lists.opensuse.org/opensuse-updates/2013-02/msg00038.html
http://www.opera.com/docs/changelogs/unified/1213/
Vendor Advisory
http://www.opera.com/support/kb/view/1043/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*

Версия до 12.12 (включая)

cpe:2.3:a:opera:opera_browser:12.00:*:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:12.00:beta:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:12.01:*:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:12.02:*:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:12.10:*:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:12.10:beta:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:12.11:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.25416

Средний

9.3 Critical

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-cwh9-fc6c-2w9p

github

больше 3 лет назад

Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document.

EPSS

Процентиль: 96%

0.25416

Средний

9.3 Critical

CVSS2

Дефекты

CWE-94