CVE-2024-52276

216.73.216.10

· Published 04/12/2024 11:30 · Modified 05/12/2024 11:15

Labels: CVE-2024-52276 2024-12-04 2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe CVE-2024-52276 CWE-451

Essential information

Published: 04/12/2024 11:30
Modified: 05/12/2024 11:15
Author: —
Creator: —
CISA KEV: No
CWE: —
CVSS vector

Description

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which is provided when the combined download option is used. 3. Displayed version does not show the layer flattened version, which is also the provided version when downloading the result in the uncombined option. Once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects DocuSign: through 2024-12-04.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: 2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
NVD: View on NVD

CVE-2024-52276

Essential information

Description

NVD status

References