The UI has multiple interpretations of user input but does not prompt the user when it selects the less secure interpretation.