CVE-2020-6157: Medium severity opera touch vulnerability

Q: What is the vulnerability ID?

The vulnerability ID is CVE-2020-6157.

Q: What is the title of the vulnerability?

The title of the vulnerability is Opera Touch for iOS before version 2.4.5 address bar spoofing vulnerability.

Q: What is the severity of CVE-2020-6157?

The severity of CVE-2020-6157 is medium (4.3).

Q: How can I fix the vulnerability in Opera Touch for iOS?

To fix the vulnerability, update Opera Touch for iOS to version 2.4.5 or later.

Published Nov 13, 2020

Updated

Opera Touch for iOS before version 2.4.5 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an address of a different page. This may allow the malicious page to impersonate another page and trick a user into providing sensitive data.

Affected Software

1 affected component

Opera Opera Touch Iphone Os<2.4.5

Event History

Nov 13, 2020

CVE Published

via MITRE·07:26 PM

Data Sourced

via MITRE·07:26 PM

DescriptionWeakness

Frequently Asked Questions

What is the vulnerability ID?

The vulnerability ID is CVE-2020-6157.

What is the title of the vulnerability?

The title of the vulnerability is Opera Touch for iOS before version 2.4.5 address bar spoofing vulnerability.

What is the severity of CVE-2020-6157?

The severity of CVE-2020-6157 is medium (4.3).

How does the vulnerability in Opera Touch for iOS before version 2.4.5 work?

The vulnerability allows a malicious page to trick the browser into showing an address of a different page, potentially allowing it to impersonate another page and trick users into providing sensitive information.

How can I fix the vulnerability in Opera Touch for iOS?