CVE-2024-52269

HIGH Year: 2024
CVSS v3 Score
8.1
High
Weakness Type
CWE-451
View all →

Vulnerability Description

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. The SaaS AI assistant ignores hidden content that is rendered after signing, misleading the user. For reference see: CVE-2024-52276 This issue affects DocuSign: through 2024-12-04.

Related Vulnerabilities

CVE-2024-7529

HIGH
CVSS:8.1(High)

The date picker could partially obscure security prompts. This could be used by a malicious site to trick a user into granting permissions. This vulnerability affects Firefox < 129, Firefox ESR < 115....

CWE-4512024

CVE-2022-23646

HIGH
CVSS:7.5(High)

Next.js is a React framework. Starting with version 10.0.0 and prior to version 12.1.0, Next.js is vulnerable to User Interface (UI) Misrepresentation of Critical Information. In order to be affected,...

CWE-4512022

CVE-2024-52276

HIGH
CVSS:7.5(High)

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when ...

CWE-4512024

CVE-2020-9236

HIGH
CVSS:8.8(High)

There is an improper interface design vulnerability in Huawei product. A module interface of the impated product does not deal with some operations properly. Attackers can exploit this vulnerability t...

CWE-4512020