CVE-2019-19788 is a vulnerability in Opera
Published on December 18, 2019
Opera for Android before 54.0.2669.49432 is vulnerable to a sandboxed cross-origin iframe bypass attack. By using a service working inside a sandboxed iframe it is possible to bypass the normal sandboxing attributes. This allows an attacker to make forced redirections without any user interaction from a third-party context.
Products Associated with CVE-2019-19788
Want to know whenever a new CVE is published for Opera? stack.watch will email you.
Affected Versions
Opera Software AS Opera for Android Version Below 54.0.2669.49432 is affected by CVE-2019-19788Exploit Probability
EPSS
0.05%
Percentile
13.74%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.