CVE-2009-2059 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.8 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:P/I:P/A:P
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 46%

Vendor	Product	Version
opera	opera_browser	𝑥 ≤ 9.22
opera	opera_browser	7.0
opera	opera_browser	7.23
opera	opera_browser	7.53
opera	opera_browser	7.54
opera	opera_browser	7.60
opera	opera_browser	8.0
opera	opera_browser	8.01
opera	opera_browser	8.02
opera	opera_browser	8.50
opera	opera_browser	8.51
opera	opera_browser	8.52
opera	opera_browser	8.53
opera	opera_browser	8.54
opera	opera_browser	9.0
opera	opera_browser	9.01
opera	opera_browser	9.02
opera	opera_browser	9.10
opera	opera_browser	9.12
opera	opera_browser	9.20
opera	opera_browser	9.21

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-287 - Improper Authentication
When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

References

http://research.microsoft.com/apps/pubs/default.aspx?id=79323

http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf

http://research.microsoft.com/apps/pubs/default.aspx?id=79323

http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf