← Back to blog

Opera GX Vulnerability Allowed Silent Mod Installation

A critical flaw in Opera GX enabled malicious sites to auto-install browser mods and steal user data without interaction. The vulnerability has been patched by Opera.

TL;DR

  • Researchers discovered a flaw in Opera GX allowing silent mod installations.
  • Attackers could extract sensitive data like Gmail addresses without user interaction.
  • The vulnerability required no clicks or user consent to exploit.
  • Opera has released a patch and found no evidence of real-world exploitation.
  • Users are advised to update their browsers immediately.

Security researchers uncovered a significant vulnerability in Opera GX, the gaming-oriented variant of the Opera browser, which allowed malicious websites to automatically install browser extensions. These extensions could then harvest sensitive information from visited pages without requiring any action from the user.

In their demonstration, the researchers were able to reconstruct a logged-in user’s complete Gmail address after just a single visit to a compromised site. This highlights the severity of the issue, as it bypassed typical user interaction safeguards. Opera has since addressed the flaw with a security update.

Vulnerability Details

  • The flaw resided in how Opera GX handled extension installation permissions.
  • Malicious sites could trigger unauthorized mod installations silently.
  • Installed mods gained access to page content, including sensitive user data.
  • No user interaction or confirmation was needed to initiate the attack.

Impact and Response

  • Attackers could extract personal information such as email addresses from visited pages.
  • Proof-of-concept successfully harvested Gmail data from a single site visit.
  • Opera released a patch to resolve the issue following researcher disclosure.
  • No evidence of the flaw being exploited in the wild was found.
  • Users are encouraged to update to the latest version of Opera GX immediately.

Sources

Sources

Security email updates

One digest email when we publish new security articles (TL;DR plus links to read more). Unsubscribe anytime from the message footer. See our Privacy Policy.

Opera GX Vulnerability Allowed Silent Mod Installation — Agent Breach Blog | Agent Breach