Vulnerabilities > Improper Restriction of Rendered UI Layers or Frames
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-08 | CVE-2022-36736 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Jitsi 2.10.5550 Jitsi-2.10.5550 was discovered to contain a vulnerability in its web UI which allows attackers to perform a clickjacking attack via a crafted HTTP request. | 6.1 |
| 2022-08-12 | CVE-2022-2800 | Improper Restriction of Rendered UI Layers or Frames vulnerability in GYM Management System Project GYM Management System A vulnerability, which was classified as problematic, has been found in SourceCodester Gym Management System. | 6.1 |
| 2022-08-12 | CVE-2022-20331 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 13.0 In the Framework, there is a possible way to enable a work profile without user consent due to a tapjacking/overlay attack. | 7.8 |
| 2022-08-10 | CVE-2022-20852 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Cisco Webex Meetings Multiple vulnerabilities in the web interface of Cisco Webex Meetings could allow a remote attacker to conduct a cross-site scripting (XSS) attack or a frame hijacking attack against a user of the web interface. | 6.5 |
| 2022-08-05 | CVE-2022-33723 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/11.0/12.0 A vulnerable code in onCreate of BluetoothScanDialog prior to SMR Aug-2022 Release 1, allows attackers to trick the user to select an unwanted bluetooth device via tapjacking/overlay attack. | 6.1 |
| 2022-08-05 | CVE-2022-33727 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/11.0/12.0 A vulnerable code in onCreate of SecDevicePickerDialog prior to SMR Aug-2022 Release 1, allows attackers to trick the user to select an unwanted bluetooth device via tapjacking/overlay attack. | 6.1 |
| 2022-08-01 | CVE-2022-34162 | Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM Cics TX 11.1 IBM CICS TX 11.1 could allow a remote attacker to hijack the clicking action of the victim. | 6.1 |
| 2022-07-23 | CVE-2022-1138 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Chrome Inappropriate implementation in Web Cursor in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who had compromised the renderer process to obscure the contents of the Omnibox (URL bar) via a crafted HTML page. | 6.5 |
| 2022-07-20 | CVE-2022-2179 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Rockwellautomation Micrologix 1100 Firmware and Micrologix 1400 Firmware The X-Frame-Options header in Rockwell Automation MicroLogix 1100/1400 Versions 21.007 and prior is not configured in the HTTP response, which could allow clickjacking attacks. | 6.5 |
| 2022-07-13 | CVE-2022-20212 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/11.0 In wifi.RequestToggleWifiActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking/overlay attack. | 7.8 |