Vulnerabilities > Improper Restriction of Rendered UI Layers or Frames
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-21 | CVE-2022-22552 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Dell EMC Appsync 3.9.0.0/4.2.0.0/4.3.0.0 Dell EMC AppSync versions 3.9 to 4.3 contain a clickjacking vulnerability in AppSync. | 6.1 |
| 2022-01-14 | CVE-2021-1036 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In LocationSettingsActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking/overlay attack. | 7.8 |
| 2022-01-10 | CVE-2021-34087 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Ultimaker products In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. | 7.1 |
| 2021-12-15 | CVE-2021-0954 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/11.0 In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. | 7.3 |
| 2021-12-15 | CVE-2021-0963 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In onCreate of KeyChainActivity.java, there is a possible way to use an app certificate stored in keychain due to a tapjacking/overlay attack. | 7.1 |
| 2021-12-15 | CVE-2021-0992 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 12.0 In onCreate of PaymentDefaultDialog.java, there is a possible way to change a default payment app without user consent due to tapjack overlay. | 3.3 |
| 2021-12-15 | CVE-2021-1006 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 12.0 In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. | 4.4 |
| 2021-12-15 | CVE-2021-1016 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 12.0 In onCreate of UsbPermissionActivity.java, there is a possible way to grant an app access to USB without informed user consent due to a tapjacking/overlay attack. | 7.3 |
| 2021-12-15 | CVE-2021-1038 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In UserDetailsActivity of AndroidManifest.xml, there is a possible DoS due to a tapjacking/overlay attack. | 5.5 |
| 2021-12-15 | CVE-2021-1039 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In NotificationAccessActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking/overlay attack. | 7.8 |