Vulnerabilities > Improper Restriction of Rendered UI Layers or Frames
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-30 | CVE-2023-36920 | Improper Restriction of Rendered UI Layers or Frames vulnerability in SAP products In SAP Enable Now - versions WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10, ENABLE_NOW_CONSUMP_DEL 1704, the X-FRAME-OPTIONS response header is not implemented, allowing an unauthenticated attacker to attempt clickjacking, which could result in disclosure or modification of information. | 6.1 |
| 2023-10-25 | CVE-2023-5721 | Improper Restriction of Rendered UI Layers or Frames vulnerability in multiple products It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an insufficient activation-delay. | 4.3 |
| 2023-10-19 | CVE-2023-41897 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Home-Assistant Home assistant is an open source home automation. | 9.6 |
| 2023-10-09 | CVE-2023-5103 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Sick Apu0200 Firmware Improper Restriction of Rendered UI Layers or Frames in RDT400 in SICK APU allows an unprivileged remote attacker to potentially reveal sensitive information via tricking a user into clicking on an actionable item using an iframe. | 4.3 |
| 2023-09-28 | CVE-2023-38873 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Economizzer 0.9/April2023 The commit 3730880 (April 2023) and v.0.9-beta1 of gugoan Economizzer is vulnerable to Clickjacking. | 6.5 |
| 2023-09-27 | CVE-2023-30961 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Palantir Gotham-Fe-Bundle and Titanium-Browser-App-Bundle Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link. | 6.1 |
| 2023-08-29 | CVE-2023-0654 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Cloudflare Warp Due to a misconfiguration, the WARP Mobile Client (< 6.29) for Android was susceptible to a tapjacking attack. | 3.7 |
| 2023-08-24 | CVE-2023-4229 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, potentially exposing users to security risks. | 4.7 |
| 2023-07-12 | CVE-2023-37455 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Mozilla Firefox The permission request prompt from the site in the background tab was overlaid on top of the site in the foreground tab. | 5.4 |
| 2023-06-28 | CVE-2022-20443 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 13.0 In hasInputInfo of Layer.cpp, there is a possible bypass of user interaction requirements due to a tapjacking/overlay attack. | 7.8 |