CVE-2023-43999

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 24, 2024
Updated: Jan 26, 2024

Summary

CVE-2023-43999 is a vulnerability that affects the COLORFUL_laundry mini-app on Line v13.6.1. This vulnerability allows attackers to send crafted malicious notifications by leveraging the leakage of the channel access token. The risk score for this vulnerability is 26, indicating a medium level of severity. The base score is 5.4, with low privileges required and no user interaction needed. The attack vector is through the network, with low impact on integrity and confidentiality. The exploitability score is 2.8, signifying a moderate level of ease for exploitation. There is no impact on availability. It is recommended to remediate this vulnerability by applying patches or updates provided by Line to mitigate potential risks to organizations using this app.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43999 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options