CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

46 matches found

Vulnrichment•added 2026/04/16 5:54 a.m.•1 views

CVE-2026-3861

LINE client for iOS versions prior to 26.3.0 contains a vulnerability in the in-app browser where opening a crafted web page can repeatedly trigger OS-level dialogs due to insufficient safeguards when handling arbitrary URL schemes, potentially causing the iOS device to become temporarily...

7.1CVSS5.3AI score0.00018EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:40 p.m.•6 views

CVE-2023-43993

An issue in smaregiappmarket mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.0008EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:40 p.m.•3 views

CVE-2023-43991

An issue in PRIMA CLINIC mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.0008EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2012-3949

Malware in sbrugna...

5CVSS6.4AI score0.00283EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-48348

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.0008EPSS

Exploits1References1

F5 Networks•added 2025/05/27 4:7 p.m.•7 views

K000151542: OpenSSL vulnerability CVE-2025-4575

Security Advisory Description Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as truste...

6.5CVSS7.5AI score0.00077EPSS

Exploits0

RedhatCVE•added 2025/05/23 4:42 a.m.•4 views

CVE-2023-48130

An issue in GINZA CAFE mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.00167EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:42 a.m.•5 views

CVE-2023-48132

An issue in kosei entertainment esportsstudioLegends mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.00167EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:42 a.m.•5 views

CVE-2023-48133

An issue in angel coffee mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.00167EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:42 a.m.•4 views

CVE-2023-48135

An issue in mimasakafarm mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.00167EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:41 a.m.•4 views

CVE-2023-48131

An issue in CHIGASAKI BAKERY mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.00167EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:38 a.m.•6 views

CVE-2023-44000

An issue in Otakara lapis totuka mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.0008EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:37 a.m.•8 views

CVE-2023-44001

An issue in Ailand clinic mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

5.4CVSS6.9AI score0.0008EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:23 a.m.•3 views

CVE-2023-43303

An issue in craftbeer bar canvas mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...

8.2CVSS6.9AI score0.00298EPSS

Exploits0

NVD•added 2025/05/22 2:16 p.m.•25 views

CVE-2025-4575

Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that use. A copy & paste...

6.5CVSS0.00077EPSS

Exploits0References3

CVE•added 2025/05/22 1:36 p.m.•277 views

CVE-2025-4575

OpenSSL CVE-2025-4575 affects the x509 application in OpenSSL 3.5 (and related mentions in 3.0–3.4 are not affected). A copy-paste error during minor refactoring causes the -addreject option to mark a certificate as trusted for a use instead of rejecting it, meaning a certificate intended to be r...

6.5CVSS6.6AI score0.00077EPSS

Exploits0References3Affected Software1

AlpineLinux•added 2025/05/22 1:36 p.m.•42 views

CVE-2025-4575

6.5CVSS6.7AI score0.00077EPSS

Exploits0

RedhatCVE•added 2025/05/22 12:39 a.m.•5 views

CVE-2015-0897

LINE for Android version 5.0.2 and earlier and LINE for iOS version 5.0.0 and earlier are vulnerable to MITM man-in-the-middle attack since the application allows non-SSL/TLS communications. As a result, any API may be invoked from a script injected by a MITM man-in-the-middle attacker...

5.9CVSS6.5AI score0.00115EPSS

Exploits0References1

Tenable Nessus•added 2024/07/03 12:0 a.m.•25 views

CBL Mariner 2.0 Security Update: cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl (CVE-2023-6237)

The version of cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6237 advisory. - Issue summary: Checking excessively long invalid RSA...

5.9CVSS6.5AI score0.00944EPSS

Exploits0References2