CVE-2023-43993
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Jan 24, 2024
Updated: Jan 27, 2024
Summary
CVE-2023-43993 is a vulnerability affecting the smaregi_app_market mini-app on Line version 13.6.1. This issue grants attackers the ability to send malicious notifications, exploiting a leakage of the channel access token. The vulnerability enables attackers to potentially gain unauthorized access to user information or spread malware. Users are advised to update their Line app to the latest version to mitigate this risk. Attackers could use the malicious notifications to install malware or steal sensitive data, posing a significant threat to users.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Linecorp