📦 Line
by Linecorp
🔍 What is Line?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
LINE client for iOS versions before 15.4 has a critical SSL/TLS certificate validation bypass vulnerability in an integrated financial SDK. This allows man-in-the-middle attackers to intercept or modi...
CVE-2023-45559 is a vulnerability in Tamaki_hamanoki Line v.13.6.1 where attackers can leak the channel access token and send crafted notifications. This allows unauthorized notification delivery to a...
This vulnerability in the PARK DANDAN mini-app on Line v13.6.1 allows attackers to send malicious notifications by exploiting a leaked channel access token. Attackers can impersonate legitimate notifi...
This vulnerability in the urban_project mini-app on Line v13.6.1 allows attackers to send malicious notifications by exploiting a leaked channel access token. Attackers can impersonate legitimate serv...
This vulnerability in the sanTas mini-app on Line v13.6.1 allows attackers to send malicious notifications by exploiting a leaked channel access token. Attackers can impersonate legitimate notificatio...
CVE-2023-38846 is an information disclosure vulnerability in Marbre Lapin Line v.13.6.1 that allows remote attackers to access sensitive information through crafted GET requests. This affects users ru...
CVE-2023-38848 is an information disclosure vulnerability in rmc R Beauty CLINIC Line software that allows remote attackers to access sensitive information through crafted GET requests. This affects o...
A DLL injection vulnerability in LINE for Windows allows attackers to execute arbitrary code with elevated privileges. This affects LINE for Windows versions before 7.8 due to a build misconfiguration...
CVE-2021-36216 is a DLL injection vulnerability in LINE for Windows that allows attackers to execute arbitrary code by placing malicious DLL files in specific locations. This affects all LINE for Wind...
LINE for Android versions before 14.20 has a UI spoofing vulnerability where the full-screen security notification disappears when switching apps and returning. This allows attackers to create fake in...
The LINE iOS app's in-app browser has an address bar spoofing vulnerability that allows attackers to display trusted URLs while running malicious JavaScript in iframes. This enables phishing attacks w...
This vulnerability in LINE for iOS allows attackers to spoof the user interface, creating confusion about whether displayed pages or interactive elements are trustworthy. It affects iOS users running ...
LINE for Android versions 13.8 through 15.5 contains a UI spoofing vulnerability in its in-app browser. Attackers can obscure full-screen warning prompts with malicious layouts, potentially tricking u...