PT-2023-28768 · Line · Line

Published

2023-12-06

Updated

2023-12-13

CVE-2023-43300

CVSS v3.1

8.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Name of the Vulnerable Software and Affected Versions Line version 13.6.1

Description An issue in the urban project mini-app allows attackers to send crafted malicious notifications via leakage of the channel access token. This can potentially lead to unauthorized access and malicious activities.

Recommendations For Line version 13.6.1, update to a newer version that addresses the issue of the channel access token leakage to prevent malicious notifications.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-43300

Affected Products

Line

PT-2023-28768 · Line · Line

CVE-2023-43300

Related Identifiers

Affected Products

References · 6