Security

Critical

High

Medium

Low

Identifier

CVE-2014-0815

Reporter

jpcert

State

PUBLISHED

Published

2014-02-06 22:00:00 UTC

Got Fix

CWE

Affected Count

Last Updated

2024-08-06 09:27:20 UTC

Description

The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies.

CVSS Metrics

CVSS

AV - Attack Vector N/A
AC - Attack Complexity N/A
PR - Privileges Required N/A
UI - User Interaction N/A

AI - Availability Impact N/A
CI - Confidentiality N/A
II - Integrity Impact N/A

SC - Scope N/A
V - Version N/A

References

1 https://exchange.xforce.ibmcloud.com/vulnerabilities/91090 2 http://jvndb.jvn.jp/jvndb/JVNDB-2014-000014 3 http://www.securityfocus.com/bid/65391 4 http://blogs.opera.com/security/2014/01/security-changes-features-opera-19/ 5 http://jvn.jp/en/jp/JVN23256725/index.html

Affected Products

Weakness Enumeration

TYPE	Description
text	n/a

Identifier

Reporter

State

Published

Got Fix

CWE

Affected Count

Last Updated

Repository:

Vendor:

Identifier

Reporter

State

Published

Got Fix

CWE

Affected Count

Last Updated

n/a

Repository:

Vendor: