CVE-2023-43993

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 24, 2024
Updated: Jan 27, 2024

Summary

CVE-2023-43993 is a vulnerability affecting the smaregi_app_market mini-app on Line version 13.6.1. This issue grants attackers the ability to send malicious notifications, exploiting a leakage of the channel access token. The vulnerability enables attackers to potentially gain unauthorized access to user information or spread malware. Users are advised to update their Line app to the latest version to mitigate this risk. Attackers could use the malicious notifications to install malware or steal sensitive data, posing a significant threat to users.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share