← Back to CVEs
CVE-2009-3046
HIGH7.5
Description
Opera before 10.00 does not check all intermediate X.509 certificates for revocation, which makes it easier for remote SSL servers to bypass validation of the certificate chain via a revoked certificate.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published9/2/2009
Last Modified4/23/2026
Sourcenvd
Honeypot Sightings0
Affected Products
opera:opera_browser
Weaknesses (CWE)
CWE-295
References
http://www.opera.com/docs/changelogs/freebsd/1000/(cve@mitre.org)
http://www.opera.com/docs/changelogs/linux/1000/(cve@mitre.org)
http://www.opera.com/docs/changelogs/mac/1000/(cve@mitre.org)
http://www.opera.com/docs/changelogs/solaris/1000/(cve@mitre.org)
http://www.opera.com/docs/changelogs/windows/1000/(cve@mitre.org)
http://www.opera.com/support/kb/view/929/(cve@mitre.org)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6357(cve@mitre.org)
http://www.opera.com/docs/changelogs/freebsd/1000/(af854a3a-2127-422b-91ae-364da2661108)
http://www.opera.com/docs/changelogs/linux/1000/(af854a3a-2127-422b-91ae-364da2661108)
http://www.opera.com/docs/changelogs/mac/1000/(af854a3a-2127-422b-91ae-364da2661108)
http://www.opera.com/docs/changelogs/solaris/1000/(af854a3a-2127-422b-91ae-364da2661108)
http://www.opera.com/docs/changelogs/windows/1000/(af854a3a-2127-422b-91ae-364da2661108)
http://www.opera.com/support/kb/view/929/(af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6357(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.