Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2024-52276

Summary
Assigner-VULSec
Assigner Org ID-2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Published At-04 Dec, 2024 | 10:13
Updated At-06 Jan, 2025 | 17:41
Rejected At-
Credits

PDF Document Spoofing in DocuSign

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which is provided when the combined download option is used. 3. Displayed version does not show the layer flattened version, which is also the provided version when downloading the result in the uncombined option. Once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects DocuSign: through 2024-12-04.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:VULSec
Assigner Org ID:2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Published At:04 Dec, 2024 | 10:13
Updated At:06 Jan, 2025 | 17:41
Rejected At:
▼CVE Numbering Authority (CNA)
PDF Document Spoofing in DocuSign

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which is provided when the combined download option is used. 3. Displayed version does not show the layer flattened version, which is also the provided version when downloading the result in the uncombined option. Once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects DocuSign: through 2024-12-04.

Affected Products
Vendor
DocuSign
Product
DocuSign
Default Status
affected
Versions
Affected
  • From 0 through 2024-12-04 (git)
Problem Types
TypeCWE IDDescription
CWECWE-451CWE-451 User Interface (UI) Misrepresentation of Critical Information
Type: CWE
CWE ID: CWE-451
Description: CWE-451 User Interface (UI) Misrepresentation of Critical Information
Metrics
VersionBase scoreBase severityVector
4.08.2HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/U:Red
Version: 4.0
Base score: 8.2
Base severity: HIGH
Vector:
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/U:Red
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-148CAPEC-148 Content Spoofing
CAPEC ID: CAPEC-148
Description: CAPEC-148 Content Spoofing
Solutions
Configurations
Workarounds

* If other party initiated e-signing - Download the PDF file for a security professionals/educated persons inspection * If possible - Download the PDF file and perform full flattening (of the entire document, not just form fields)

Exploits

Known, potentially in use (e.g., spear phishing)

Credits
finder
Erez Kalman
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.vulsec.org/advisories
vdb-entry
https://www.loom.com/share/65ce5423d2a04e0bbd2688a178d5427f
exploit
https://new.space/s/3SG3wQxTSg7lq-vLzUjy-Q#mmrg4t0wMThwTqs9nogVHdLAjMFlkgFnKHn_Q8u9cCs
exploit
https://drive.proton.me/urls/QD7Z493XX4#Yn3eKAjuZA5m
exploit
Hyperlink: https://www.vulsec.org/advisories
Resource:
vdb-entry
Hyperlink: https://www.loom.com/share/65ce5423d2a04e0bbd2688a178d5427f
Resource:
exploit
Hyperlink: https://new.space/s/3SG3wQxTSg7lq-vLzUjy-Q#mmrg4t0wMThwTqs9nogVHdLAjMFlkgFnKHn_Q8u9cCs
Resource:
exploit
Hyperlink: https://drive.proton.me/urls/QD7Z493XX4#Yn3eKAjuZA5m
Resource:
exploit
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Vendor
docusign
Product
docusign
CPEs
  • cpe:2.3:a:docusign:docusign:-:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 0 before * (custom)
Metrics
VersionBase scoreBase severityVector
3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Published At:04 Dec, 2024 | 11:30
Updated At:06 Jan, 2025 | 18:15

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. 1. Displayed version does not show the layer flattened version, which is provided when the "Print" option is used. 2. Displayed version does not show the layer flattened version, which is provided when the combined download option is used. 3. Displayed version does not show the layer flattened version, which is also the provided version when downloading the result in the uncombined option. Once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects DocuSign: through 2024-12-04.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary4.08.2HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red
Secondary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Type: Secondary
Version: 4.0
Base score: 8.2
Base severity: HIGH
Vector:
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red
Type: Secondary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-451Secondary2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
CWE ID: CWE-451
Type: Secondary
Source: 2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://drive.proton.me/urls/QD7Z493XX4#Yn3eKAjuZA5m2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
N/A
https://new.space/s/3SG3wQxTSg7lq-vLzUjy-Q#mmrg4t0wMThwTqs9nogVHdLAjMFlkgFnKHn_Q8u9cCs2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
N/A
https://www.loom.com/share/65ce5423d2a04e0bbd2688a178d5427f2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
N/A
https://www.vulsec.org/advisories2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
N/A
Hyperlink: https://drive.proton.me/urls/QD7Z493XX4#Yn3eKAjuZA5m
Source: 2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Resource: N/A
Hyperlink: https://new.space/s/3SG3wQxTSg7lq-vLzUjy-Q#mmrg4t0wMThwTqs9nogVHdLAjMFlkgFnKHn_Q8u9cCs
Source: 2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Resource: N/A
Hyperlink: https://www.loom.com/share/65ce5423d2a04e0bbd2688a178d5427f
Source: 2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Resource: N/A
Hyperlink: https://www.vulsec.org/advisories
Source: 2fdefc65-d750-4b8d-96ee-6e2c0c42dbfe
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

4Records found
CVE-2024-52269
Matching Score-10
Assigner-VULSec Labs
ShareView Details
Matching Score-10
Assigner-VULSec Labs
CVSS Score-8.2||HIGH
EPSS-0.06% / 19.58%
||
7 Day CHG~0.00%
Published-04 Dec, 2024 | 11:25
Updated-06 Jan, 2025 | 18:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
AI Assistant PDF Document Spoofing in DocuSign

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSign allows Content Spoofing. The SaaS AI assistant ignores hidden content that is rendered after signing, misleading the user. For reference see: CVE-2024-52276 This issue affects DocuSign: through 2024-12-04.

Action-Not Available
Vendor-DocuSigndocusign
Product-DocuSigndocusign
CWE ID-CWE-451
User Interface (UI) Misrepresentation of Critical Information
CVE-2024-9163
Matching Score-4
Assigner-GitLab Inc.
ShareView Details
Matching Score-4
Assigner-GitLab Inc.
CVSS Score-3.5||LOW
EPSS-0.01% / 1.40%
||
7 Day CHG~0.00%
Published-23 May, 2025 | 12:31
Updated-08 Aug, 2025 | 18:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
User Interface (UI) Misrepresentation of Critical Information in GitLab

A business logic error in GitLab CE/EE affecting all versions starting from 12.1 prior to 17.10.7, 17.11 prior to 17.11.3 and 18.0 prior to 18.0.1 where an attacker can cause a branch name confusion in confidential MRs.

Action-Not Available
Vendor-GitLab Inc.
Product-gitlabGitLab
CWE ID-CWE-451
User Interface (UI) Misrepresentation of Critical Information
CVE-2024-52271
Matching Score-4
Assigner-VULSec Labs
ShareView Details
Matching Score-4
Assigner-VULSec Labs
CVSS Score-8.2||HIGH
EPSS-0.04% / 13.15%
||
7 Day CHG~0.00%
Published-05 Dec, 2024 | 13:56
Updated-05 Dec, 2024 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
PDF Document Spoofing in Documenso

User Interface (UI) Misrepresentation of Critical Information vulnerability in Documenso allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects Documenso: through 1.8.0, >1.8.0 and Documenso SaaS (Hosted) as of 2024-12-05.

Action-Not Available
Vendor-Documensodocumenso
Product-DocumensoDocumenso SaaS (Hosted)documenso
CWE ID-CWE-451
User Interface (UI) Misrepresentation of Critical Information
CVE-2024-52277
Matching Score-4
Assigner-VULSec Labs
ShareView Details
Matching Score-4
Assigner-VULSec Labs
CVSS Score-8.2||HIGH
EPSS-0.04% / 11.82%
||
7 Day CHG~0.00%
Published-04 Dec, 2024 | 10:16
Updated-05 Dec, 2024 | 16:50
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
PDF Document Spoofing in DocuSeal

User Interface (UI) Misrepresentation of Critical Information vulnerability in DocuSeal allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed (e.g. via Google Chrome -> Examine the print preview): Will render the vulnerability only, not all layers are flattened. This issue affects DocuSeal: through 1.8.1, >1.8.1.

Action-Not Available
Vendor-DocuSealdocuseal
Product-DocuSealdocuseal
CWE ID-CWE-451
User Interface (UI) Misrepresentation of Critical Information
Details not found