CVE-2023-2265 Improper restriction of rendered UI layers or frames could lead to clickjacking attack

🗓️ 30 Nov 2023 16:55:55Reported by SELType

SEL-411L clickjacking vulnerability in UI layer

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-2265	21 Dec 202310:37	–	circl
CNNVD	Schweitzer Engineering Laboratories SEL-411L Security Vulnerability	30 Nov 202300:00	–	cnnvd
CVE	CVE-2023-2265	30 Nov 202316:55	–	cve
EUVD	EUVD-2023-33771	3 Oct 202520:07	–	euvd
ICS	Schweitzer Engineering Laboratories SEL-411L	7 Dec 202307:00	–	ics
NVD	CVE-2023-2265	30 Nov 202317:15	–	nvd
OSV	CVE-2023-2265	30 Nov 202317:15	–	osv
Prion	Input validation	30 Nov 202317:15	–	prion
Positive Technologies	PT-2023-18603 · Schweitzer Engineering Laboratories · Sel-411L	30 Nov 202300:00	–	ptsecurity

[
  {
    "defaultStatus": "unaffected",
    "product": "SEL-411L",
    "vendor": "Schweitzer Engineering Laboratories",
    "versions": [
      {
        "lessThan": "R118-V4",
        "status": "affected",
        "version": "R118-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R119-V5",
        "status": "affected",
        "version": "R119-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R120-V6",
        "status": "affected",
        "version": "R120-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R121-V3",
        "status": "affected",
        "version": "R121-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R122-V3",
        "status": "affected",
        "version": "R122-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R123-V3",
        "status": "affected",
        "version": "R123-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R124-V3",
        "status": "affected",
        "version": "R124-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R125-V3",
        "status": "affected",
        "version": "R125-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R126-V4",
        "status": "affected",
        "version": "R126-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R127-V2",
        "status": "affected",
        "version": "R127-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R128-V1",
        "status": "affected",
        "version": "R128-V0",
        "versionType": "custom"
      },
      {
        "lessThan": "R129-V1",
        "status": "affected",
        "version": "R129-V0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
selinc	www.selinc.com/support/security-notifications/external-reports/

30 Nov 2023 16:55Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.14.3

EPSS0.00139

CWE-1021