Address Bar Spoofing in Opera Mini for Android
CVE-2020-6158

4.7MEDIUM

Key Information:

Vendor: Opera
Status: Opera Mini For Android
Vendor: CVE Published:; 21 February 2025

What is CVE-2020-6158?

Opera Mini for Android prior to version 52.2 is susceptible to a significant vulnerability that enables address bar spoofing. In this scenario, a malicious website can manipulate the browser's interface, misleading users into believing they are on a legitimate page. Such deception can result in users inadvertently disclosing sensitive information, as they may not recognize the true origin of the page they are interacting with. This vulnerability underscores the importance of browser security in safeguarding user data from potential impersonation attacks.

Affected Version(s)

Opera Mini for Android Below 52.2

References

https://security.opera.com/en/address-bar-spoofing-in-ope...

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 21, 2025
Vulnerability Reserved
Jan 7, 2020