Authentication Information Exposure in LINE Client for iOS by LINE Corporation
CVE-2021-41011

7.5HIGH

Key Information:

Vendor: Line Corporation
Status: Line Client For iOS
Vendor: CVE Published:; 22 September 2021

🔔 Create Line Corporation Vulnerability Alert

What is CVE-2021-41011?

The LINE Client for iOS prior to version 11.15.0 is susceptible to a vulnerability that may allow unauthorized external entities to access sensitive authentication information under specific circumstances. This exposure is typically difficult to exploit, but when combined with a flaw on the server side, attackers may gain access to this information, potentially compromising user accounts and services.

Affected Version(s)

LINE client for iOS <

References

https://hackerone.com/reports/1279524

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 22, 2021
Vulnerability Reserved
Sep 13, 2021