CVE-2012-6461

Opera Browser < 12.10 - Improper Input Validation in X.509 Certificate Validation

Title source: llm
STIX 2.1

Description

The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by causing a failure of a single checking service.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.opera.com/docs/changelogs/unified/1210/
Vendor Advisory x_refsource_confirm
http://www.opera.com/support/kb/view/1029/

Scores

EPSS 0.0013
EPSS Percentile 32.0%

Details

CWE
CWE-20
Status published
Products (26)
opera/opera_browser 1.00
opera/opera_browser 2.00
opera/opera_browser 2.10 (4 CPE variants)
opera/opera_browser 2.12
opera/opera_browser 3.00 (2 CPE variants)
opera/opera_browser 3.10
opera/opera_browser 3.21
opera/opera_browser 3.50
opera/opera_browser 3.51
opera/opera_browser 3.60
... and 16 more
Published Jan 02, 2013
Tracked Since Feb 18, 2026