← Voltar para CVEs
CVE-2025-64387
N/ADescricao
The web application is vulnerable to a so-called ‘clickjacking’ attack. In this type of attack, the vulnerable page is inserted into a page controlled by the attacker in order to deceive the victim. This deception can range from making the victim click on a button to making them enter their login credentials in a form that, a priori, appears legitimate.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado10/31/2025
Ultima modificacao11/4/2025
Fontenvd
Avistamentos honeypot0
Fraquezas (CWE)
CWE-1021
Referencias
https://cds.thalesgroup.com/es/s21sec(50b5080a-775f-442e-83b5-926b5ca517b6)
https://circutor.com/productos/iot-industrial-y-automatizacion/conversores-y-pasarelas/product/D80010./(50b5080a-775f-442e-83b5-926b5ca517b6)
https://www.hackrtu.com/blog/cg-0day-en-003/(50b5080a-775f-442e-83b5-926b5ca517b6)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.