Lucene search

Kaspersky LabKLA11718

HistoryDec 27, 2019 - 12:00 a.m.

KLA11718 Multiple vulnerabilities in Opera

2019-12-2700:00:00

Kaspersky Lab

threats.kaspersky.com

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.027 Low

EPSS

Percentile

90.3%

JSON

Detect date:

12/27/2019

Severity:

High

Description:

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, obtain sensitive information, spoof user interface.

Affected products:

Opera earlier than 66.0.3515.21

Solution:

Update to the latest version
Download Opera

Original advisories:

Changelog for Opera 66
Stable Channel Update for Desktop

Impacts:

ACE

Related products:

Opera

CVE-IDS:

References

blogs.opera.com/desktop/changelog-for-66/#b3515.21

chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13722

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13725

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13726

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13727

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13728

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13729

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13730

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13732

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13734

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13735

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13736

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13737

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13738

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13739

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13740

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13741

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13742

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13743

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13744

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13745

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13746

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13747

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13748

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13749

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13750

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13751

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13752

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13753

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13754

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13755

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13756

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13757

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13758

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13759

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13761

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13762

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13763

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13764

statistics.securelist.com/vulnerability-scan/month

threats.kaspersky.com/en/product/Opera/

www.opera.com

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.027 Low

EPSS

Percentile

90.3%

JSON