CVE Vulnerabilities

CVE-2019-12278

Published: Mar 12, 2020 | Modified: Aug 24, 2020
CVSS 3.x
4.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Opera through 53 on Android allows Address Bar Spoofing. Characters from several languages are displayed in Right-to-Left order, due to mishandling of several Unicode characters. The rendering mechanism, in conjunction with the first strong character concept, may improperly operate on a numerical IP address or an alphabetic string, leading to a spoofed URL.

Affected Software

Name Vendor Start Version End Version
Opera Opera 52.1.2517.139570 52.1.2517.139570

References