Skip to main content

CWE-450

Multiple Interpretations of UI Input

3 CVEs Avg CVSS 6.0 MITRE
0
CRITICAL
1
HIGH
2
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2024-25858 HIGH This Week

In Foxit PDF Reader before 2024.1 and PDF Editor before 2024.1, code execution via JavaScript could occur because of an unoptimized prompt message for users to review parameters of commands. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Pdf Editor Pdf Reader
NVD
CVSS 3.1
8.4
EPSS
0.2%
CVE-2022-20863 MEDIUM This Month

A vulnerability in the messaging interface of Cisco Webex App, formerly Webex Teams, could allow an unauthenticated, remote attacker to manipulate links or other content within the messaging. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cisco Webex Teams
NVD
CVSS 3.1
5.3
EPSS
0.8%
CVE-2021-1242 MEDIUM This Month

A vulnerability in Cisco Webex Teams could allow an unauthenticated, remote attacker to manipulate file names within the messaging interface. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Information Disclosure Webex Teams
NVD
CVSS 3.1
4.3
EPSS
1.4%
EPSS 0% CVSS 8.4
HIGH This Week

In Foxit PDF Reader before 2024.1 and PDF Editor before 2024.1, code execution via JavaScript could occur because of an unoptimized prompt message for users to review parameters of commands. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Pdf Editor Pdf Reader
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

A vulnerability in the messaging interface of Cisco Webex App, formerly Webex Teams, could allow an unauthenticated, remote attacker to manipulate links or other content within the messaging. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cisco Webex Teams
NVD
EPSS 1% CVSS 4.3
MEDIUM This Month

A vulnerability in Cisco Webex Teams could allow an unauthenticated, remote attacker to manipulate file names within the messaging interface. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Information Disclosure Webex Teams
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy