User Interface (UI) Misrepresentation of Critical Information
CVE-2024-7981
Summary
Inappropriate implementation in Views in Google Chrome versions prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page.
- LOW
- NETWORK
- LOW
- UNCHANGED
- REQUIRED
- NONE
- NONE
- NONE
CWE-451 - User Interface (UI) Misrepresentation of Critical Information
The user interface (UI) does not properly represent critical information to the user, allowing the information - or its source - to be obscured or spoofed. This is often a component in phishing attacks.
References
Advisory Timeline
- Published