First published: Fri Nov 13 2020(Updated: )
Opera Touch for iOS before version 2.4.5 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an address of a different page. This may allow the malicious page to impersonate another page and trick a user into providing sensitive data.
Credit: security@opera.com
Affected Software | Affected Version | How to fix |
---|---|---|
Opera Opera Touch | <2.4.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2020-6157.
The title of the vulnerability is Opera Touch for iOS before version 2.4.5 address bar spoofing vulnerability.
The severity of CVE-2020-6157 is medium (4.3).
The vulnerability allows a malicious page to trick the browser into showing an address of a different page, potentially allowing it to impersonate another page and trick users into providing sensitive information.
To fix the vulnerability, update Opera Touch for iOS to version 2.4.5 or later.