CVE Vulnerabilities

CVE-2023-44000

Published: Jan 24, 2024 | Modified: Jan 27, 2024
CVSS 3.x
5.4
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An issue in Otakara lapis totuka mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.

Affected Software

Name Vendor Start Version End Version
Line Linecorp 13.6.1 (including) 13.6.1 (including)

References