Описание
LINE client for iOS prior to 15.19 allows UI spoofing due to inconsistencies between the navigation state and the in-app browser's user interface, which could create confusion about the trust context of displayed pages or interactive elements under specific conditions.
Ссылки
- Permissions RequiredThird Party Advisory
- Permissions RequiredThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 15.19.0 (исключая)
cpe:2.3:a:linecorp:line:*:*:*:*:*:iphone_os:*:*
EPSS
Процентиль: 8%
0.00029
Низкий
3.1 Low
CVSS3
4.3 Medium
CVSS3
Дефекты
NVD-CWE-Other
CWE-451
Связанные уязвимости
CVSS3: 3.1
github
около 2 месяцев назад
LINE client for iOS prior to 15.19 allows UI spoofing due to inconsistencies between the navigation state and the in-app browser's user interface, which could create confusion about the trust context of displayed pages or interactive elements under specific conditions.
EPSS
Процентиль: 8%
0.00029
Низкий
3.1 Low
CVSS3
4.3 Medium
CVSS3
Дефекты
NVD-CWE-Other
CWE-451