Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/12/16 6:56 a.m.7 views

CVE-2025-14022

LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financial SDK. The SDK interfered with the application's network processing, causing server certificate verification to be disabled for a significant portion of netwo...

7.7CVSS6.6AI score0.00161EPSS
Exploits0References1
NVD
NVDadded 2025/12/15 7:15 a.m.2 views

CVE-2025-14021

The in-app browser in LINE client for iOS versions prior to 14.14 is vulnerable to address bar spoofing, which could allow attackers to execute malicious JavaScript within iframes while displaying trusted URLs, enabling phishing attacks through overlaid malicious content...

4.3CVSS0.00177EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/15 6:45 a.m.22 views

CVE-2025-14023

LINE client for iOS prior to 15.19 allows UI spoofing due to inconsistencies between the navigation state and the in-app browser's user interface, which could create confusion about the trust context of displayed pages or interactive elements under specific conditions...

3.1CVSS0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/15 12:0 a.m.4 views

PT-2025-51205

The in-app browser in LINE client for iOS versions prior to 14.14 is vulnerable to address bar spoofing, which could allow attackers to execute malicious JavaScript within iframes while displaying trusted URLs, enabling phishing attacks through overlaid malicious content...

4.3CVSS6.9AI score0.00177EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2024/06/24 2:5 a.m.2 views

LINE client for iOS vulnerable to universal cross-site scripting

Overview The in-app browser of LINE client for iOS provided by LY Corporation contains a universal cross-site scripting vulnerability CWE-79, CVE-2024-5739. LY Corporation reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact If a user clicks a malicious...

6.1CVSS5.9AI score0.00269EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2018/08/16 12:0 a.m.3 views

PT-2018-11821 · Line · Line

Name of the Vulnerable Software and Affected Versions: LINE application version 8.8.0 for iOS Description: An issue in the LINE application allows authentication bypass by overriding the LAContext return Boolean value to be "true" because the kSecAccessControlUserPresence protection mechanism is...

6.3CVSS7.4AI score0.00358EPSS
Exploits1References3
CNVD
CNVDadded 2018/02/27 12:0 a.m.3 views

LINE for iOS Man-in-the-Middle Attack Vulnerability

LINE for iOS is a suite of live chat software based on the iOS platform. The program supports free calls, sending SMS and more. A security vulnerability exists in LINE versions 7.1.3 to 7.1.5, which is caused by the program failing to validate the SSL server's X.509 certificate. The vulnerability...

5.9CVSS6.6AI score0.00626EPSS
Exploits0References1
Rows per page
Query Builder