← Back

CVE-2023-34658

nvd nist
Published: Jun 29, 2023Modified: Nov 27, 2024

JSON object

Loading...
5.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Exploitability: 3.9 / Impact: 1.4
Source: NVD

Description

Telegram v9.6.3 on iOS allows attackers to hide critical information on the User Interface via calling the function SFSafariViewController.

Affected (1)

Products: Telegram: Telegram
Telegram
1 product
Telegram
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Telegram
Version 9.6.3

Related CWEs

CWE-1021
Improper Restriction of Rendered UI Layers or Frames
The web application does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain, which can lead to user confusion about which interface the user is interacting with.

References (3)

Source: cve@mitre.org
Broken Link
Source: nvd@nist.gov
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link

Timeline

No history available yet.