2 matches found
CVE-2015-2968
LINE@ for Android version 1.0.0 and LINE@ for iOS version 1.0.0 are vulnerable to MITM man-in-the-middle attack since the application allows non-SSL/TLS communications. As a result, any API may be invoked from a script injected by a MITM man-in-the-middle attacker...
CVE-2015-2968
LINE@ for Android 1.0.0 and LINE@ for iOS 1.0.0 are vulnerable to MITM attacks due to accepting non-SSL/TLS communications, allowing an attacker to invoke APIs via a injected script. Public sources (NVD entry CVE-2015-2968) report a CVSSv3.1 base score of 5.9 (Network, High impact on integrity). ...