CVE-2024-52276

Name of the Vulnerable Software and Affected Versions DocuSign versions through 2024-12-04

Description The issue is related to a User Interface (UI) Misrepresentation of Critical Information vulnerability, which allows Content Spoofing. This means that the displayed version of a document does not accurately represent the actual content, specifically when using the "Print" option, combined download option, or uncombined download option. The vulnerability can be observed when printing the document, for example, via Google Chrome's print preview, where only the vulnerable content is rendered, and not all layers are flattened.

Recommendations For DocuSign versions through 2024-12-04, update to a version released after 2024-12-04 to mitigate the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.