Vulnerabilities > Improper Restriction of Rendered UI Layers or Frames

DATE CVE VULNERABILITY TITLE RISK
2022-01-14 CVE-2021-1036 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android
In LocationSettingsActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking/overlay attack.
network
google CWE-1021
6.8
2022-01-10 CVE-2021-34087 Improper Restriction of Rendered UI Layers or Frames vulnerability in Ultimaker products
In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking.
6.8
2021-12-15 CVE-2021-0954 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/11.0
In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack.
6.9
2021-12-15 CVE-2021-0963 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android
In onCreate of KeyChainActivity.java, there is a possible way to use an app certificate stored in keychain due to a tapjacking/overlay attack.
3.3
2021-12-15 CVE-2021-1006 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 12.0
In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure.
local
low complexity
google CWE-1021
2.1
2021-12-15 CVE-2021-1016 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 12.0
In onCreate of UsbPermissionActivity.java, there is a possible way to grant an app access to USB without informed user consent due to a tapjacking/overlay attack.
4.4
2021-12-15 CVE-2021-1038 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android
In UserDetailsActivity of AndroidManifest.xml, there is a possible DoS due to a tapjacking/overlay attack.
4.7
2021-12-15 CVE-2021-1039 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android
In NotificationAccessActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking/overlay attack.
6.9
2021-12-15 CVE-2021-1040 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android
In onCreate of BluetoothPairingSelectionFragment.java, there is a possible EoP due to a tapjacking/overlay attack.
local
low complexity
google CWE-1021
7.2
2021-12-13 CVE-2021-39054 Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM Spectrum Copy Data Management
IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to hijack the clicking action of the victim.
network
ibm CWE-1021
3.5