Vulnerabilities > Linecorp > Line > 7.1.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-12 | CVE-2023-5554 | Improper Certificate Validation vulnerability in Linecorp Line Lack of TLS certificate verification in log transmission of a financial module within LINE Client for iOS prior to 13.16.0. | 9.8 |
| 2022-11-29 | CVE-2022-41568 | Resource Exhaustion vulnerability in Linecorp Line LINE client for iOS before 12.17.0 might be crashed by sharing an invalid shared key of e2ee in group chat. | 7.5 |
| 2021-09-22 | CVE-2021-41011 | Unspecified vulnerability in Linecorp Line LINE client for iOS before 11.15.0 might expose authentication information for a certain service to external entities under certain conditions. | 7.5 |
| 2021-09-08 | CVE-2021-36215 | Unspecified vulnerability in Linecorp Line LINE client for iOS 10.21.3 and before allows address bar spoofing due to inappropriate address handling. | 5.3 |
| 2021-07-13 | CVE-2021-36214 | Cross-site Scripting vulnerability in Linecorp Line LINE client for iOS before 10.16.3 allows cross site script with specific header in WebView. | 6.1 |
| 2018-02-23 | CVE-2018-0518 | Improper Certificate Validation vulnerability in Linecorp Line 7.1.3/7.15 LINE for iOS version 7.1.3 to 7.1.5 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.9 |