Vulnerabilities > CVE-2019-12278 - Unspecified vulnerability in Opera 52.1.2517.139570
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
LOW Availability impact
NONE Summary
Opera through 53 on Android allows Address Bar Spoofing. Characters from several languages are displayed in Right-to-Left order, due to mishandling of several Unicode characters. The rendering mechanism, in conjunction with the "first strong character" concept, may improperly operate on a numerical IP address or an alphabetic string, leading to a spoofed URL.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- https://help.opera.com/en/latest/security-and-privacy/
- https://help.opera.com/en/latest/security-and-privacy/
- https://medium.com/bugbountywriteup/opera-android-address-bar-spoofing-cve-2019-12278-9ffcfd6c508c
- https://medium.com/bugbountywriteup/opera-android-address-bar-spoofing-cve-2019-12278-9ffcfd6c508c