CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-2968

LINE@ for Android version 1.0.0 and LINE@ for iOS version 1.0.0 are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. As a result, any API may be invoked from a script injected by a MITM (man-in-the-middle) attacker.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.0%

CVSS Severity

CVSS v3 Score 5.9

References

http://official-blog.line.me/ja/archives/36495925.html
https://jvn.jp/en/jp/JVN22546110/
http://official-blog.line.me/ja/archives/36495925.html
https://jvn.jp/en/jp/JVN22546110/

Products affected by CVE-2015-2968

Line » Line@ » Version: 1.0.0

cpe:2.3:a:line:line@:1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-2968

Products

Pricing

Contact Us