CVE-2015-0897

EPSS 0.2%

Vexday Risk Score

3Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

31 out 2023Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

LINE for Android version 5.0.2 and earlier and LINE for iOS version 5.0.0 and earlier are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. As a result, any API may be invoked from a script injected by a MITM (man-in-the-middle) attacker.

Produtos afetados

LINE Corporation · LINE for Android LINE Corporation · LINE for iOS

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://official-blog.line.me/ja/archives/24809761.html https://jvn.jp/en/jp/JVN41281927/