Filtered by vendor Linecorp
Subscribe
Total
84 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-39739 | 1 Linecorp | 1 Regina Sweets\&bakery | 2024-09-12 | N/A | 8.2 HIGH |
The leakage of the client secret in REGINA SWEETS&BAKERY Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-39737 | 1 Linecorp | 1 Matsuya | 2024-09-12 | N/A | 8.2 HIGH |
The leakage of the client secret in Matsuya Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-39736 | 1 Linecorp | 1 Fukunaga Memberscard | 2024-09-12 | N/A | 8.2 HIGH |
The leakage of the client secret in Fukunaga_memberscard Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-39735 | 1 Linecorp | 1 Uomasa Saiji New | 2024-09-12 | N/A | 8.2 HIGH |
The leakage of the client secret in Uomasa_Saiji_news Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-38848 | 1 Linecorp | 1 Line | 2024-09-12 | N/A | 7.5 HIGH |
An issue in rmc R Beauty CLINIC Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | |||||
CVE-2023-38847 | 1 Linecorp | 1 Line | 2024-09-12 | N/A | 7.5 HIGH |
An issue in CHRISTINA JAPAN Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | |||||
CVE-2023-38846 | 1 Linecorp | 1 Line | 2024-09-12 | N/A | 7.5 HIGH |
An issue in Marbre Lapin Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | |||||
CVE-2023-38845 | 1 Linecorp | 1 Line | 2024-09-12 | N/A | 7.5 HIGH |
An issue in Anglaise Company Anglaise.Company v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | |||||
CVE-2023-39740 | 1 Linecorp | 1 Onigiriya-musubee | 2024-09-11 | N/A | 8.2 HIGH |
The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-39734 | 1 Linecorp | 1 Trackdiner10\/10 Mc | 2024-09-11 | N/A | 8.2 HIGH |
The leakage of the client secret in VISION MEAT WORKS TrackDiner10/10_mc Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-39733 | 1 Linecorp | 1 Tonton-tei | 2024-09-11 | N/A | 8.2 HIGH |
The leakage of the client secret in TonTon-Tei Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-39732 | 1 Linecorp | 1 Tokueimaru Waiting | 2024-09-11 | N/A | 8.2 HIGH |
The leakage of the client secret in Tokueimaru_waiting Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages. | |||||
CVE-2023-38849 | 1 Linecorp | 1 Line | 2024-09-11 | N/A | 7.5 HIGH |
An issue in tire-sales Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. | |||||
CVE-2023-48130 | 1 Linecorp | 1 Line | 2024-09-04 | N/A | 5.4 MEDIUM |
An issue in GINZA CAFE mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token. | |||||
CVE-2023-43993 | 1 Linecorp | 1 Line | 2024-09-04 | N/A | 5.4 MEDIUM |
An issue in smaregi_app_market mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token. | |||||
CVE-2023-43998 | 1 Linecorp | 1 Line | 2024-09-03 | N/A | 5.4 MEDIUM |
An issue in Books-futaba mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token. | |||||
CVE-2023-43301 | 1 Linecorp | 1 Line | 2024-08-28 | N/A | 8.2 HIGH |
An issue in DARTS SHOP MAXIM mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token. | |||||
CVE-2023-48127 | 1 Linecorp | 1 Line | 2024-08-27 | N/A | 5.4 MEDIUM |
An issue in myGAKUYA mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token. | |||||
CVE-2023-44487 | 32 Akka, Amazon, Apache and 29 more | 311 Http Server, Opensearch Data Prepper, Apisix and 308 more | 2024-08-14 | N/A | 7.5 HIGH |
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. | |||||
CVE-2023-48134 | 1 Linecorp | 1 Line | 2024-08-14 | N/A | 7.5 HIGH |
nagayama_copabowl Line 13.6.1 is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. |