Known Vulnerabilities for products from Linecorp
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Linecorp".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22820 | Due to the lack of media file checks before rendering, it was possible for an attacker to cause abnormal CPU consumption for ... | 5.5 - MEDIUM | 2022-01-20 | 2023-08-08 |
| CVE-2021-43795 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2021-12-02 | 2021-12-06 |
| CVE-2021-41011 | LINE client for iOS before 11.15.0 might expose authentication information for a certain service to external entities under c... | 7.5 - HIGH | 2021-09-22 | 2022-07-12 |
| CVE-2021-38388 | Central Dogma allows privilege escalation with mirroring to the internal dogma repository that has a file managing the author... | 8.8 - HIGH | 2021-09-08 | 2022-07-12 |
| CVE-2021-36216 | LINE for Windows 6.2.1.2289 and before allows arbitrary code execution via malicious DLL injection. | 7.8 - HIGH | 2021-09-08 | 2021-09-15 |
| CVE-2021-36215 | LINE client for iOS 10.21.3 and before allows address bar spoofing due to inappropriate address handling. | 5.3 - MEDIUM | 2021-09-08 | 2021-09-15 |
| CVE-2021-36214 | LINE client for iOS before 10.16.3 allows cross site script with specific header in WebView. | 6.1 - MEDIUM | 2021-07-13 | 2021-07-15 |
| CVE-2019-16771 | Versions of Armeria 0.85.0 through and including 0.96.0 are vulnerable to HTTP response splitting, which allows remote attack... | 6.5 - MEDIUM | 2019-12-06 | 2019-12-16 |
| CVE-2019-6010 | Integer overflow vulnerability in LINE(Android) from 4.4.0 to the version before 9.15.1 allows remote attackers to cause a de... | 7.8 - HIGH | 2019-09-19 | 2019-09-19 |
| CVE-2019-6007 | Integer overflow vulnerability in apng-drawable 1.0.0 to 1.6.0 allows an attacker to cause a denial of service (DoS) conditio... | 8.8 - HIGH | 2019-09-12 | 2019-09-19 |
| CVE-2018-13446 | ** DISPUTED ** An issue was discovered in the LINE jp.naver.line application 8.8.1 for Android. The Passcode feature allows a... | 7 - HIGH | 2018-08-16 | 2023-11-07 |
| CVE-2018-13435 | ** DISPUTED ** An issue was discovered in the LINE jp.naver.line application 8.8.0 for iOS. The Passcode feature allows authe... | 7 - HIGH | 2018-08-16 | 2023-11-07 |
| CVE-2018-13434 | ** DISPUTED ** An issue was discovered in the LINE jp.naver.line application 8.8.0 for iOS. The LAContext class for Biometric... | 6.3 - MEDIUM | 2018-08-16 | 2023-11-07 |
| CVE-2018-0650 | The LINE MUSIC for Android version 3.1.0 to versions prior to 3.6.5 does not verify X.509 certificates from SSL servers, whic... | 7.4 - HIGH | 2018-09-07 | 2019-04-12 |
| CVE-2018-0609 | Untrusted search path vulnerability in LINE for Windows versions before 5.8.0 allows an attacker to gain privileges via a Tro... | 7.8 - HIGH | 2018-06-26 | 2018-08-17 |
| CVE-2018-0518 | LINE for iOS version 7.1.3 to 7.1.5 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attac... | 5.9 - MEDIUM | 2018-02-23 | 2018-03-20 |
| CVE-2016-4850 | LINE for Windows before 4.8.3 allows man-in-the-middle attackers to execute arbitrary code. | 8.1 - HIGH | 2017-04-20 | 2017-04-26 |
| CVE-2016-4831 | Untrusted search path vulnerability in LINE and LINE Installer 4.7.0 and earlier on Windows allows local users to gain privil... | 7.8 - HIGH | 2016-07-12 | 2016-11-28 |
| CVE-2016-1156 | LINE 4.3.0.724 and earlier on Windows and 4.3.1 and earlier on OS X allows remote authenticated users to cause a denial of se... | 5.7 - MEDIUM | 2016-02-19 | 2020-05-11 |
| CVE-2013-7144 | LINE 3.2.1.83 and earlier on Windows and 3.2.1 and earlier on OS X does not verify X.509 certificates from SSL servers, which... | 4.3 - MEDIUM | 2014-08-16 | 2014-08-18 |
Known software with vulnerabilities from Linecorp
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Linecorp | Apng-drawable | 1.0.0 |
| Application | Linecorp | Armeria | 0.4.0 |
| Application | Linecorp | Line | 3.1.18 |
| Application | Linecorp | Line@ | 1.0.0 |
| Application | Linecorp | Line Music | 3.1.0 |