CWE-1021
Improper Restriction of Rendered UI Layers or Frames
The web application does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain.
376 vulnerabilities with CWE-1021
CVE-2021-38472
MEDIUM
InHand Networks IR615 Router - XSS
CVSS 4.7
CVE-2021-27003
MEDIUM
Clustered Data ONTAP <9.5P18, 9.6P15, 9.7P14, 9.8P5, 9.9.1 - XSS
CVSS 4.7
CVE-2021-0583
HIGH
Android -9, Android-10 - Privilege Escalation
CVSS 7.3
CVE-2021-37971
MEDIUM
Google Chrome <94.0.4606.54 - XSS
CVSS 4.3
CVE-2021-0598
HIGH
Android - Privilege Escalation
CVSS 7.3
CVE-2021-3799
MEDIUM
grav-plugin-admin - XSS
CVSS 5.4
CVE-2021-3734
HIGH
yourls - XSS
CVSS 8.8
CVE-2021-3731
MEDIUM
LedgerSMB - CSRF
CVSS 5.9
CVE-2021-32070
MEDIUM
Mitel MiCollab <9.3 - CSRF
CVSS 5.4
CVE-2021-37788
MEDIUM
Gurock TestRail v5.3.0.3603 - XSS
CVSS 5.4
CVE-2021-33596
LOW
F-Secure Safe Browser for iOS - Open Redirect
CVSS 3.5
CVE-2021-20560
MEDIUM
IBM Sterling Connect:Direct Browser User Interface <1.5.0.2 - CSRF
CVSS 5.4
CVE-2021-0603
HIGH
Android -11 - Privilege Escalation
CVSS 7.8
CVE-2021-0586
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-35300
MEDIUM
Zammad <4.0.0 - XSS
CVSS 4.3
CVE-2021-0538
HIGH
Android -11 - Privilege Escalation
CVSS 7.3
CVE-2021-0537
HIGH
Android -11 - Privilege Escalation
CVSS 7.3
CVE-2021-0569
MEDIUM
Android <11 - Info Disclosure
CVSS 5.0
CVE-2021-0523
HIGH
Android - Privilege Escalation
CVSS 7.3
CVE-2021-0506
HIGH
Android - Privilege Escalation
CVSS 7.3
CVE-2021-0487
HIGH
Android - Local Privilege Escalation
CVSS 7.8
CVE-2021-27467
MEDIUM
Emerson Rosemount X-STREAM - Open Redirect
CVSS 6.1
CVE-2021-22866
HIGH
GitHub Enterprise Server - Privilege Escalation
CVSS 8.8
CVE-2021-0446
HIGH
Android <11 - Privilege Escalation
CVSS 7.3
CVE-2021-0438
HIGH
Android <10 - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities
376