PT-2019-12730 · Opera · Opera

Published

2019-08-01

Updated

2020-08-24

CVE-2019-12278

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Opera versions through 53 on Android

Description The issue allows Address Bar Spoofing due to the mishandling of several Unicode characters, which are displayed in Right-to-Left order. This can cause the rendering mechanism to improperly operate on a numerical IP address or an alphabetic string, leading to a spoofed URL.

Recommendations For Opera versions through 53 on Android, update to a version that fixes the Address Bar Spoofing issue to prevent potential URL spoofing attacks.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-12278

Affected Products

Opera

PT-2019-12730 · Opera · Opera

CVE-2019-12278

Related Identifiers

Affected Products

References · 6