CVE-2012-1924

2012-03-2803:22:00

CWE-94

[email protected]

web.nvd.nist.gov

opera

cve-2012-1924

user-assisted remote attack

download dialog

security vulnerability

6.4 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.4%

JSON

Opera before 11.62 allows user-assisted remote attackers to trick users into downloading and executing arbitrary files via a small window for the download dialog.

CPENameOperatorVersion
opera:opera_browseropera opera browsereq7.01
opera:opera_browseropera opera browsereq9.27
opera:opera_browseropera opera browsereq7.23
opera:opera_browseropera opera browsereq9.50
opera:opera_browseropera opera browsereq9.02
opera:opera_browseropera opera browsereq7.03
opera:opera_browseropera opera browsereq10.10
opera:opera_browseropera opera browsereq7.53
opera:opera_browseropera opera browsereq8.50
opera:opera_browseropera opera browsereq9.24

CPE	Name	Operator	Version
opera:opera_browser	opera opera browser	eq	7.01
opera:opera_browser	opera opera browser	eq	9.27
opera:opera_browser	opera opera browser	eq	7.23
opera:opera_browser	opera opera browser	eq	9.50
opera:opera_browser	opera opera browser	eq	9.02
opera:opera_browser	opera opera browser	eq	7.03
opera:opera_browser	opera opera browser	eq	10.10
opera:opera_browser	opera opera browser	eq	7.53
opera:opera_browser	opera opera browser	eq	8.50
opera:opera_browser	opera opera browser	eq	9.24