CWE-1021
Improper Restriction of Rendered UI Layers or Frames
The web application does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain.
376 vulnerabilities with CWE-1021
CVE-2023-37455
MEDIUM
Firefox for iOS < 115 - Info Disclosure
CVSS 5.4
CVE-2023-34658
MEDIUM
Telegram <9.6.3 - Info Disclosure
CVSS 5.3
CVE-2023-23343
LOW
HCL BigFix OSD <311.12 - CSRF
CVSS 2.4
CVE-2023-2013
LOW
GitLab CE/EE <15.10.8, <15.11.7, <16.0.2 - Info Disclosure
CVSS 2.6
CVE-2023-3140
MEDIUM
KNIME Business Hub <1.4.0 - CSRF
CVSS 4.3
CVE-2023-28159
MEDIUM
Firefox <111 - Info Disclosure
CVSS 4.3
CVE-2023-25748
MEDIUM
Firefox <111 - Info Disclosure
CVSS 4.3
CVE-2023-25730
MEDIUM
Firefox <110, Thunderbird <102.8, Firefox ESR <102.8 - Info Disclosure
CVSS 5.4
CVE-2023-1362
MEDIUM
unilogies/bumsys <2.0.2 - Info Disclosure
CVSS 6.1
CVE-2023-0780
MEDIUM
Cockpit <2.3.9-dev - Info Disclosure
CVSS 5.4
CVE-2023-23126
MEDIUM
Connectwise Automate 2022.11 - CSRF
CVSS 6.1
CVE-2023-20913
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2023-0057
MEDIUM
pyload <0.5.0b3.dev33 - Info Disclosure
CVSS 6.1
CVE-2022-32919
MEDIUM
Apple Ipados < 16.2 - Denial of Service
CVSS 4.7
CVE-2022-20443
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2022-43378
MEDIUM
NetBotz <4.7.0 - XSS
CVSS 6.5
CVE-2022-32891
MEDIUM
Safari <16 - UI Spoofing
CVSS 6.1
CVE-2022-40268
MEDIUM
Mitsubishi Electric GOT2000 Series - CSRF
CVSS 6.1
CVE-2022-45096
MEDIUM
Dell PowerScale OneFS <9.3.0 - Info Disclosure
CVSS 5.4
CVE-2022-32517
MEDIUM
Conext ComBox - XSS
CVSS 6.5
CVE-2022-20215
MEDIUM
Android -10, -11, -12 - DoS
CVSS 5.5
CVE-2022-20214
MEDIUM
Android - Tapjacking
CVSS 4.7
CVE-2022-20213
MEDIUM
Android - DoS
CVSS 5.5
CVE-2022-45420
MEDIUM
Firefox ESR < 102.5 & Thunderbird < 102.5 & Firefox < 107 - XSS
CVSS 6.5
CVE-2022-45418
MEDIUM
Firefox ESR < 102.5 & Thunderbird < 102.5 & Firefox < 107 - SSRF
CVSS 6.1
Details
Vulnerabilities
376