Opera Browser
by Opera
CVEs (280)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2011-2620 | 0.00 | — | 0.02 | Jul 1, 2011 | Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving SVG animation. | |||
| CVE-2011-2619 | 0.00 | — | 0.02 | Jul 1, 2011 | Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a gradient with many stops, related to the implementation of CANVAS elements, SVG, and Cascading Style Sheets (CSS). | |||
| CVE-2011-2618 | 0.00 | — | 0.02 | Jul 1, 2011 | Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via web script that moves a (1) AUDIO element or (2) VIDEO element between windows. | |||
| CVE-2011-2617 | 0.00 | — | 0.02 | Jul 1, 2011 | Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements. | |||
| CVE-2011-2616 | 0.00 | — | 0.02 | Jul 1, 2011 | Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (memory consumption) via unknown content on a web page, as demonstrated by test262.ecmascript.org. | |||
| CVE-2011-2615 | 0.00 | — | 0.02 | Jul 1, 2011 | Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application hang) via unknown content on a web page, as demonstrated by domiteca.com. | |||
| CVE-2011-2614 | 0.00 | — | 0.02 | Jul 1, 2011 | The SVG implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving a path on which many characters are drawn. | |||
| CVE-2011-2613 | 0.00 | — | 0.02 | Jul 1, 2011 | The Array.prototype.join method in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a non-array object that contains initial holes. | |||
| CVE-2011-2612 | 0.00 | — | 0.02 | Jul 1, 2011 | Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by progorod.ru. | |||
| CVE-2011-2611 | 0.00 | — | 0.01 | Jul 1, 2011 | Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page. | |||
| CVE-2011-2610 | 0.00 | — | 0.02 | Jul 1, 2011 | Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue." | |||
| CVE-2011-2609 | 0.00 | — | 0.02 | Jul 1, 2011 | Opera before 11.50 does not properly restrict data: URIs, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site. | |||
| CVE-2011-1337 | 0.00 | — | 0.03 | Jul 1, 2011 | Opera before 11.50 allows remote attackers to cause a denial of service (disk consumption) via invalid URLs that trigger creation of error pages. | |||
| CVE-2011-1824 | 0.00 | — | 0.06 | May 10, 2011 | The VEGAOpBitmap::AddLine function in Opera before 10.61 does not properly initialize memory during processing of the SIZE attribute of a SELECT element, which allows remote attackers to trigger an invalid memory write operation, and consequently cause a denial of service… | |||
| CVE-2011-0687 | 0.00 | — | 0.02 | Jan 31, 2011 | Opera before 11.01 does not properly implement Wireless Application Protocol (WAP) dropdown lists, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted WAP document. | |||
| CVE-2011-0686 | 0.00 | — | 0.03 | Jan 31, 2011 | Unspecified vulnerability in Opera before 11.01 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by vkontakte.ru. | |||
| CVE-2011-0685 | 0.00 | — | 0.00 | Jan 31, 2011 | The Delete Private Data feature in Opera before 11.01 does not properly implement the "Clear all email account passwords" option, which might allow physically proximate attackers to access an e-mail account via an unattended workstation. | |||
| CVE-2011-0684 | 0.00 | — | 0.02 | Jan 31, 2011 | Opera before 11.01 does not properly handle redirections and unspecified other HTTP responses, which allows remote web servers to obtain sufficient access to local files to use these files as page resources, and consequently obtain potentially sensitive information from the… | |||
| CVE-2011-0683 | 0.00 | — | 0.02 | Jan 31, 2011 | Opera before 11.01 does not properly restrict the use of opera: URLs, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site. | |||
| CVE-2011-0682 | 0.00 | — | 0.06 | Jan 31, 2011 | Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML form with a select element that contains a large number of children. |
- CVE-2011-2620Jul 1, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving SVG animation.
- CVE-2011-2619Jul 1, 2011risk 0.00cvss —epss 0.02
Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a gradient with many stops, related to the implementation of CANVAS elements, SVG, and Cascading Style Sheets (CSS).
- CVE-2011-2618Jul 1, 2011risk 0.00cvss —epss 0.02
Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via web script that moves a (1) AUDIO element or (2) VIDEO element between windows.
- CVE-2011-2617Jul 1, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements.
- CVE-2011-2616Jul 1, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (memory consumption) via unknown content on a web page, as demonstrated by test262.ecmascript.org.
- CVE-2011-2615Jul 1, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application hang) via unknown content on a web page, as demonstrated by domiteca.com.
- CVE-2011-2614Jul 1, 2011risk 0.00cvss —epss 0.02
The SVG implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving a path on which many characters are drawn.
- CVE-2011-2613Jul 1, 2011risk 0.00cvss —epss 0.02
The Array.prototype.join method in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a non-array object that contains initial holes.
- CVE-2011-2612Jul 1, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by progorod.ru.
- CVE-2011-2611Jul 1, 2011risk 0.00cvss —epss 0.01
Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page.
- CVE-2011-2610Jul 1, 2011risk 0.00cvss —epss 0.02
Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue."
- CVE-2011-2609Jul 1, 2011risk 0.00cvss —epss 0.02
Opera before 11.50 does not properly restrict data: URIs, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.
- CVE-2011-1337Jul 1, 2011risk 0.00cvss —epss 0.03
Opera before 11.50 allows remote attackers to cause a denial of service (disk consumption) via invalid URLs that trigger creation of error pages.
- CVE-2011-1824May 10, 2011risk 0.00cvss —epss 0.06
The VEGAOpBitmap::AddLine function in Opera before 10.61 does not properly initialize memory during processing of the SIZE attribute of a SELECT element, which allows remote attackers to trigger an invalid memory write operation, and consequently cause a denial of service…
- CVE-2011-0687Jan 31, 2011risk 0.00cvss —epss 0.02
Opera before 11.01 does not properly implement Wireless Application Protocol (WAP) dropdown lists, which allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted WAP document.
- CVE-2011-0686Jan 31, 2011risk 0.00cvss —epss 0.03
Unspecified vulnerability in Opera before 11.01 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by vkontakte.ru.
- CVE-2011-0685Jan 31, 2011risk 0.00cvss —epss 0.00
The Delete Private Data feature in Opera before 11.01 does not properly implement the "Clear all email account passwords" option, which might allow physically proximate attackers to access an e-mail account via an unattended workstation.
- CVE-2011-0684Jan 31, 2011risk 0.00cvss —epss 0.02
Opera before 11.01 does not properly handle redirections and unspecified other HTTP responses, which allows remote web servers to obtain sufficient access to local files to use these files as page resources, and consequently obtain potentially sensitive information from the…
- CVE-2011-0683Jan 31, 2011risk 0.00cvss —epss 0.02
Opera before 11.01 does not properly restrict the use of opera: URLs, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
- CVE-2011-0682Jan 31, 2011risk 0.00cvss —epss 0.06
Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML form with a select element that contains a large number of children.
Page 7 of 14