Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Line
(Linecorp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 68 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-04-27 | CVE-2022-29505 | Due to build misconfiguration in openssl dependency, LINE for Windows before 7.8 is vulnerable to DLL injection that could lead to privilege escalation. | Line | 7.8 | ||
| 2022-11-29 | CVE-2022-41568 | LINE client for iOS before 12.17.0 might be crashed by sharing an invalid shared key of e2ee in group chat. | Line | 7.5 | ||
| 2023-10-02 | CVE-2023-43297 | An issue in animal-art-lab v13.6.1 allows attackers to send crafted notifications via leakage of the channel access token. | Line | 5.4 | ||
| 2023-10-12 | CVE-2023-5554 | Lack of TLS certificate verification in log transmission of a financial module within LINE Client for iOS prior to 13.16.0. | Line | 9.8 | ||
| 2023-10-25 | CVE-2023-38845 | An issue in Anglaise Company Anglaise.Company v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | Line | 7.5 | ||
| 2023-10-25 | CVE-2023-38846 | An issue in Marbre Lapin Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | Line | 7.5 | ||
| 2023-10-25 | CVE-2023-38847 | An issue in CHRISTINA JAPAN Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | Line | 7.5 | ||
| 2023-10-25 | CVE-2023-38848 | An issue in rmc R Beauty CLINIC Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | Line | 7.5 | ||
| 2023-10-25 | CVE-2023-38849 | An issue in tire-sales Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | Line | 7.5 | ||
| 2023-11-09 | CVE-2023-47363 | The leakage of channel access token in F.B.P members Line 13.6.1 allows remote attackers to send malicious notifications to victims. | Line | 6.5 |