4.3

CVE-2014-0815

The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies.

Data is provided by the National Vulnerability Database (NVD)
OperaOpera Browser Version <= 17.00
   GoogleAndroid
OperaOpera Browser Version1.00
   GoogleAndroid
OperaOpera Browser Version10.00
   GoogleAndroid
OperaOpera Browser Version10.00 Updatealpha
   GoogleAndroid
OperaOpera Browser Version10.00 Updatebeta1
   GoogleAndroid
OperaOpera Browser Version10.00 Updatebeta2
   GoogleAndroid
OperaOpera Browser Version10.00 Updatebeta3
   GoogleAndroid
OperaOpera Browser Version10.01
   GoogleAndroid
OperaOpera Browser Version10.10
   GoogleAndroid
OperaOpera Browser Version10.10 Updatebeta1
   GoogleAndroid
OperaOpera Browser Version10.11
   GoogleAndroid
OperaOpera Browser Version10.20 Updatealpha
   GoogleAndroid
OperaOpera Browser Version10.50
   GoogleAndroid
OperaOpera Browser Version10.50 Updatebeta1
   GoogleAndroid
OperaOpera Browser Version10.50 Updatebeta2
   GoogleAndroid
OperaOpera Browser Version10.51
   GoogleAndroid
OperaOpera Browser Version10.52
   GoogleAndroid
OperaOpera Browser Version10.52 Updatebeta1
   GoogleAndroid
OperaOpera Browser Version10.52 Updatebeta2
   GoogleAndroid
OperaOpera Browser Version10.53
   GoogleAndroid
OperaOpera Browser Version10.53 Updateb
   GoogleAndroid
OperaOpera Browser Version10.53 Updatebeta1
   GoogleAndroid
OperaOpera Browser Version10.54
   GoogleAndroid
OperaOpera Browser Version10.60
   GoogleAndroid
OperaOpera Browser Version10.60 Updatealpha
   GoogleAndroid
OperaOpera Browser Version10.60 Updatebeta1
   GoogleAndroid
OperaOpera Browser Version10.61
   GoogleAndroid
OperaOpera Browser Version10.62
   GoogleAndroid
OperaOpera Browser Version10.63
   GoogleAndroid
OperaOpera Browser Version11.00
   GoogleAndroid
OperaOpera Browser Version11.00 Updatebeta
   GoogleAndroid
OperaOpera Browser Version11.01
   GoogleAndroid
OperaOpera Browser Version11.10
   GoogleAndroid
OperaOpera Browser Version11.10 Updatebeta
   GoogleAndroid
OperaOpera Browser Version11.11
   GoogleAndroid
OperaOpera Browser Version11.50
   GoogleAndroid
OperaOpera Browser Version11.50 Updatebeta
   GoogleAndroid
OperaOpera Browser Version11.51
   GoogleAndroid
OperaOpera Browser Version11.52
   GoogleAndroid
OperaOpera Browser Version11.52.1100
   GoogleAndroid
OperaOpera Browser Version11.60
   GoogleAndroid
OperaOpera Browser Version11.60 Updatebeta
   GoogleAndroid
OperaOpera Browser Version11.61
   GoogleAndroid
OperaOpera Browser Version11.62
   GoogleAndroid
OperaOpera Browser Version11.64
   GoogleAndroid
OperaOpera Browser Version11.65
   GoogleAndroid
OperaOpera Browser Version11.66
   GoogleAndroid
OperaOpera Browser Version11.67
   GoogleAndroid
OperaOpera Browser Version12.00
   GoogleAndroid
OperaOpera Browser Version12.00 Updatebeta
   GoogleAndroid
OperaOpera Browser Version12.01
   GoogleAndroid
OperaOpera Browser Version12.02
   GoogleAndroid
OperaOpera Browser Version12.10
   GoogleAndroid
OperaOpera Browser Version12.10 Updatebeta
   GoogleAndroid
OperaOpera Browser Version12.11
   GoogleAndroid
OperaOpera Browser Version12.12
   GoogleAndroid
OperaOpera Browser Version12.13
   GoogleAndroid
OperaOpera Browser Version12.14
   GoogleAndroid
OperaOpera Browser Version12.15
   GoogleAndroid
OperaOpera Browser Version15.00
   GoogleAndroid
OperaOpera Browser Version15.00 Updatenext
   GoogleAndroid
OperaOpera Browser Version16.00
   GoogleAndroid
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.38% 0.561
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.