2 matches found
CVE-2024-3911 Welotec: Clickjacking Vulnerability in WebUI
An unauthenticated remote attacker can deceive users into performing unintended actions due to improper restriction of rendered UI layers or frames...
CVE-2024-3911
Welotec SMART EMS WebUI is affected by CVE-2024-3911 (clickjacking) due to improper restriction of rendered UI layers or frames. An unauthenticated remote attacker can deceive users into unintended actions. Affected versions are prior to 3.1.4. Remediation: upgrade to 3.1.4 or later where fixed. ...