PT-2022-25943 · Line · Line Client For Ios
Yinmo
·
Published
2022-11-29
·
Updated
2022-12-02
·
CVE-2022-41568
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
LINE client for iOS versions prior to 12.17.0
Description
The issue is related to the LINE client for iOS, where sharing an invalid shared key of end-to-end encryption (e2ee) in a group chat might cause the application to crash.
Recommendations
For versions prior to 12.17.0, update to version 12.17.0 or later to resolve the issue.
Fix
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Line Client For Ios