CVE Vulnerabilities

CVE-2023-43990

Published: Jan 24, 2024 | Modified: Jan 27, 2024
CVSS 3.x
5.4
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An issue in cherub-hair mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.

Affected Software

Name Vendor Start Version End Version
Line Linecorp 13.6.1 (including) 13.6.1 (including)

References