Vulnerabilities > CVE-2021-46708 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Smartbear Swagger UI
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The swagger-ui-dist package before 4.1.3 for Node.js could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |