CVE-2013-3210

Name: CVE-2013-3210
Creator: NVD / NIST
Published: 2013-04-19T11:44:29.787+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.67%

Last modified Jun 16, 2026

CVE-2013-3210 is a vulnerability of currently unknown severity. Opera before 12.15 does not properly block top-level domains in Set-Cookie headers, which allows remote attackers to obtain sensitive information by leveraging control of a different web site in the same top-level domain.. EPSS estimates a 1.67% chance of exploitation in the next 30 days.

Description

Opera before 12.15 does not properly block top-level domains in Set-Cookie headers, which allows remote attackers to obtain sensitive information by leveraging control of a different web site in the same top-level domain.

Metrics

EPSS Probability

1.67%

73.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-200

Affected Software

Vendor	Product	Versions	Update
Opera	Opera Browser	<= 12.14	—
Opera	Opera Browser	3.00	—
Opera	Opera Browser	3.10	—
Opera	Opera Browser	3.21	—
Opera	Opera Browser	3.50	—
Opera	Opera Browser	3.51	—
Opera	Opera Browser	3.60	—
Opera	Opera Browser	3.61	—
Opera	Opera Browser	3.62	—
Opera	Opera Browser	4.00	—
Opera	Opera Browser	4.01	—
Opera	Opera Browser	4.02	—
Opera	Opera Browser	5.0	—
Opera	Opera Browser	5.02	—
Opera	Opera Browser	5.10	—
Opera	Opera Browser	5.11	—
Opera	Opera Browser	5.12	—
Opera	Opera Browser	6.0	—
Opera	Opera Browser	6.1	—
Opera	Opera Browser	6.01	—
Opera	Opera Browser	6.02	—
Opera	Opera Browser	6.03	—
Opera	Opera Browser	6.04	—
Opera	Opera Browser	6.05	—
Opera	Opera Browser	6.06	—
Opera	Opera Browser	6.11	—
Opera	Opera Browser	6.12	—
Opera	Opera Browser	7.0	—
Opera	Opera Browser	7.01	—
Opera	Opera Browser	7.02	—
Opera	Opera Browser	7.03	—
Opera	Opera Browser	7.10	—
Opera	Opera Browser	7.11	—
Opera	Opera Browser	7.20	—
Opera	Opera Browser	7.21	—
Opera	Opera Browser	7.22	—
Opera	Opera Browser	7.23	—
Opera	Opera Browser	7.50	—
Opera	Opera Browser	7.51	—
Opera	Opera Browser	7.52	—
Opera	Opera Browser	7.53	—
Opera	Opera Browser	7.54	—
Opera	Opera Browser	7.60	—
Opera	Opera Browser	8.0	—
Opera	Opera Browser	8.01	—
Opera	Opera Browser	8.02	—
Opera	Opera Browser	8.50	—
Opera	Opera Browser	8.51	—
Opera	Opera Browser	8.52	—
Opera	Opera Browser	8.53	—

Showing 50 of 110 affected configurations. See NVD for the full list.

References

http://www.opera.com/docs/changelogs/unified/1215/
http://www.opera.com/security/advisory/1047Vendor Advisory
http://www.opera.com/docs/changelogs/unified/1215/
http://www.opera.com/security/advisory/1047Vendor Advisory

Timeline

Published: Apr 19, 2013
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2013-3210?

How severe is CVE-2013-3210?

Severity scoring for CVE-2013-3210 is pending analysis. The EPSS model estimates a 1.67% probability of exploitation in the next 30 days.

How do I fix CVE-2013-3210?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2013-3210?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST