CVE-2014-1870

Name: CVE-2014-1870
Creator: NVD / NIST
Published: 2014-02-06T23:55:04.057+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.96%

Last modified Jun 17, 2026

CVE-2014-1870 is a vulnerability of currently unknown severity. Opera before 19 on Mac OS X allows user-assisted remote attackers to spoof the address bar via vectors involving a drag-and-drop operation.. EPSS estimates a 0.96% chance of exploitation in the next 30 days.

Description

Opera before 19 on Mac OS X allows user-assisted remote attackers to spoof the address bar via vectors involving a drag-and-drop operation.

Metrics

EPSS Probability

0.96%

56.9th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions	Update
Opera	Opera Browser	<= 18.00	—
Opera	Opera Browser	1.00	—
Opera	Opera Browser	10.00	—
Opera	Opera Browser	10.01	—
Opera	Opera Browser	10.10	—
Opera	Opera Browser	10.11	—
Opera	Opera Browser	10.20	Alpha
Opera	Opera Browser	10.50	—
Opera	Opera Browser	10.51	—
Opera	Opera Browser	10.52	—
Opera	Opera Browser	10.53	—
Opera	Opera Browser	10.54	—
Opera	Opera Browser	10.60	—
Opera	Opera Browser	10.61	—
Opera	Opera Browser	10.62	—
Opera	Opera Browser	10.63	—
Opera	Opera Browser	11.00	—
Opera	Opera Browser	11.01	—
Opera	Opera Browser	11.10	—
Opera	Opera Browser	11.11	—
Opera	Opera Browser	11.50	—
Opera	Opera Browser	11.51	—
Opera	Opera Browser	11.52	—
Opera	Opera Browser	11.52.1100	—
Opera	Opera Browser	11.60	—
Opera	Opera Browser	11.61	—
Opera	Opera Browser	11.62	—
Opera	Opera Browser	11.64	—
Opera	Opera Browser	11.65	—
Opera	Opera Browser	11.66	—
Opera	Opera Browser	11.67	—
Opera	Opera Browser	12.00	—
Opera	Opera Browser	12.01	—
Opera	Opera Browser	12.02	—
Opera	Opera Browser	12.10	—
Opera	Opera Browser	12.11	—
Opera	Opera Browser	12.12	—
Opera	Opera Browser	12.13	—
Opera	Opera Browser	12.14	—
Opera	Opera Browser	12.15	—
Opera	Opera Browser	15.00	—
Opera	Opera Browser	16.00	—
Opera	Opera Browser	17.00	—

References

http://blogs.opera.com/security/2014/01/security-changes-features-opera-19/Vendor Advisory
http://blogs.opera.com/security/2014/01/security-changes-features-opera-19/Vendor Advisory

Timeline

Published: Feb 6, 2014
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2014-1870?

Opera before 19 on Mac OS X allows user-assisted remote attackers to spoof the address bar via vectors involving a drag-and-drop operation.

How severe is CVE-2014-1870?

Severity scoring for CVE-2014-1870 is pending analysis. The EPSS model estimates a 0.96% probability of exploitation in the next 30 days.

How do I fix CVE-2014-1870?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-1870?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST