CVE-2023-48132

Name of the Vulnerable Software and Affected Versions Line version 13.6.1

Description An issue in the kosei entertainment esportsstudioLegends mini-app on Line allows attackers to send crafted malicious notifications via leakage of the channel access token.

Recommendations For version 13.6.1, consider restricting access to the mini-app until a fix is available. As a temporary workaround, avoid using the mini-app to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.