EUVD-2023-57854

Malicious code in bioql PyPI...

CVE-2023-5554

Lack of TLS certificate verification in log transmission of a financial module within LINE client for iOS prior to 13.16.0...

LINE client for iOS vulnerable to improper server certificate verification

Overview The financial module within LINE client for iOS lacks server certificate verification in log transmission CWE-295, CVE-2023-5554. LINE Corporation reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. Impact The communication may be eavesdropped under a...

CVE-2023-5554

Lack of TLS certificate verification in log transmission of a financial module within LINE client for iOS prior to 13.16.0...

CVE-2023-5554

Lack of TLS certificate verification in log transmission of a financial module within LINE client for iOS prior to 13.16.0...

Code injection

Lack of TLS certificate verification in log transmission of a financial module within LINE Client for iOS prior to 13.16.0...

CVE-2023-5554

Vulnerability context (CVE-2023-5554): LINE Client for iOS prior to 13.16.0 contains a lack of TLS certificate verification in the log transmission of the Finance module. This could allow a man‑in‑the‑middle attack to eavesdrop or tamper logs. The issue affects the financial module’s log transmis...

CVE-2023-5554

Lack of TLS certificate verification in log transmission of a financial module within LINE client for iOS prior to 13.16.0...

CVE-2023-5554

Lack of TLS certificate verification in log transmission of a financial module within LINE client for iOS prior to 13.16.0...