CVE-2019-18624: Critical severity opera mini vulnerability

Published Oct 29, 2019

Updated

Opera Mini for Android allows attackers to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of malicious%E2%80%AEtxt.apk as maliciouskpa.txt. This affects 44.1.2254.142553, 44.1.2254.142659, and 44.1.2254.143214.

Affected Software

3 affected components

Opera Mini Android=44.1.2254.142553

Opera Mini Android=44.1.2254.142659

Opera Mini Android=44.1.2254.143214

Event History

Oct 29, 2019

CVE Published

via MITRE·05:12 PM

Data Sourced

via MITRE·05:12 PM

Description

Frequently Asked Questions

What is the severity of CVE-2019-18624?

The severity of CVE-2019-18624 is critical with a CVSS score of 9.8.

How does CVE-2019-18624 affect Opera Mini for Android?

CVE-2019-18624 allows attackers to bypass intended restrictions on .apk file download/installation in Opera Mini for Android.

What is the impact of CVE-2019-18624?

The impact of CVE-2019-18624 is that attackers can trick users into downloading and installing malicious files disguised as legitimate ones.

Which versions of Opera Mini for Android are affected by CVE-2019-18624?

CVE-2019-18624 affects Opera Mini for Android versions 44.1.2254.142553, 44.1.2254.142659, and 44.1.2254.143214.

How can I fix CVE-2019-18624 in Opera Mini for Android?

To fix CVE-2019-18624, update Opera Mini for Android to a version that is not affected by the vulnerability.

CVE-2019-18624: Critical severity opera mini vulnerability

Affected Software

Event History

Don't miss critical vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2019-18624?

How does CVE-2019-18624 affect Opera Mini for Android?

What is the impact of CVE-2019-18624?

Which versions of Opera Mini for Android are affected by CVE-2019-18624?

How can I fix CVE-2019-18624 in Opera Mini for Android?

Company

Resources

Contact