PT-2023-28768 · Line · Line

Publicado

2023-12-06

Atualizado

2023-12-13

CVE-2023-43300

CVSS v3.1

8.2

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Name of the Vulnerable Software and Affected Versions Line version 13.6.1

Description An issue in the urban project mini-app allows attackers to send crafted malicious notifications via leakage of the channel access token. This can potentially lead to unauthorized access and malicious activities.

Recommendations For Line version 13.6.1, update to a newer version that addresses the issue of the channel access token leakage to prevent malicious notifications.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2023-43300

Produtos afetados

Line

PT-2023-28768 · Line · Line

CVE-2023-43300

Identificadores relacionados

Produtos afetados

Referências · 6