Code injection

2024-01-2607:15:00

PRIOn knowledge base

www.prio-n.com

code injection

security issue

crafted notifications

channel access token leakage

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.2%

JSON

An issue in UNITED BOXING GYM mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.

CPENameOperatorVersion
lineeq13.6.1

CPE	Name	Operator	Version
	line	eq	13.6.1

References

github.com/syz913/CVE-reports/blob/main/UNITED%20BOXING%20GYM.md