📦

mini

Vendor: opera

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.19% Exploit Prob.

Latest CVE CVE-2023-2505 May 22

Security Vulnerability Index

Page 1 / 1

7.7 CVSS

CVE-2023-2505

The affected products have a CSRF vulnerability that could allow an attacker to execute code and upload malicious files.

EPSS: 0.13%

Severity: HIGH

May 22, 2023

8.4 CVSS

CVE-2023-2504

Files present on firmware images could allow an attacker to gain unauthorized access as a root user using hard-coded credentials.

EPSS: 0.16%

Severity: HIGH

May 22, 2023

9.8 CVSS

CVE-2019-18624

Opera Mini for Android allows attackers to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of malicious%E2%80%AEtxt.apk as maliciouskpa.txt. This affects 44.1.2254.142553, 44.1.2254.142659, and 44.1.2254.143214.

EPSS: 0.20%

Severity: CRITICAL

Oct 29, 2019

6.1 CVSS

CVE-2019-13607

The Opera Mini application through 16.0.14 for iOS has a UXSS vulnerability that can be triggered by performing navigation to a javascript: URL.

EPSS: 0.24%

Severity: MEDIUM

Jul 18, 2019

Displaying 4 of 2 Total Entries

Total 1 Sections