CVE Vulnerabilities

CVE-2023-43995

Published: Jan 24, 2024 | Modified: Jan 27, 2024
CVSS 3.x
5.4
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An issue in picot.golf mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.

Affected Software

Name Vendor Start Version End Version
Line Linecorp 13.6.1 (including) 13.6.1 (including)

References