CVE-2018-13435

An issue was discovered in the LINE jp.naver.line application 8.8.0 for iOS. The Passcode feature allows authentication bypass via runtime manipulation that forces a certain method to disable passcode authentication. NOTE: the vendor indicates that this is not an attack of interest within the context of their threat model, which excludes iOS devices on which a jailbreak has occurred
References
Link Resource
https://gist.github.com/tanprathan/19165c43ade898ab8b664098fb171f49 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:linecorp:line:8.8.0:*:*:*:*:iphone_os:*:*

History

07 Nov 2023, 02:52

Type Values Removed Values Added
Summary ** DISPUTED ** An issue was discovered in the LINE jp.naver.line application 8.8.0 for iOS. The Passcode feature allows authentication bypass via runtime manipulation that forces a certain method to disable passcode authentication. NOTE: the vendor indicates that this is not an attack of interest within the context of their threat model, which excludes iOS devices on which a jailbreak has occurred. An issue was discovered in the LINE jp.naver.line application 8.8.0 for iOS. The Passcode feature allows authentication bypass via runtime manipulation that forces a certain method to disable passcode authentication. NOTE: the vendor indicates that this is not an attack of interest within the context of their threat model, which excludes iOS devices on which a jailbreak has occurred

Information

Published : 2018-08-16 20:29

Updated : 2024-08-05 09:15


NVD link : CVE-2018-13435

Mitre link : CVE-2018-13435

CVE.ORG link : CVE-2018-13435


JSON object : View

Products Affected

linecorp

  • line
CWE
CWE-287

Improper Authentication