UI Spoofing Vulnerability in LINE Client for Android
CVE-2025-14019

3.4LOW

Key Information:

Vendor: Line Corporation
Status: Line Client For Android
Vendor: CVE Published:; 15 December 2025

🔔 Create Line Corporation Vulnerability Alert

What is CVE-2025-14019?

A vulnerability in the LINE client for Android allows for UI spoofing within the in-app browser. This flaw can obscure critical security warnings, enabling attackers to deceive users and potentially conduct effective phishing attacks. Users may be misled by a seemingly benign interface, failing to recognize the risks associated with their actions while browsing.

Affected Version(s)

LINE client for Android 13.8 < 15.6

References

https://hackerone.com/reports/3062270

CVSS V3.1

Score:

3.4

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 15, 2025
Vulnerability Reserved
Dec 4, 2025

JSON