Unrated severityNVD Advisory· Published Dec 18, 2019· Updated Aug 5, 2024

CVE-2019-19788

Description

Opera for Android before 54.0.2669.49432 is vulnerable to a sandboxed cross-origin iframe bypass attack. By using a service working inside a sandboxed iframe it is possible to bypass the normal sandboxing attributes. This allows an attacker to make forced redirections without any user interaction from a third-party context.

Affected products

Opera Software/Opera For Androidv5
Range: Below 54.0.2669.49432

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.opera.com/bypass-a-restriction-in-ofa-54-opera-security-advisories/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000