UI Spoofing Vulnerability in LINE Client for iOS
CVE-2025-14023

3.1LOW

Key Information:

Vendor: Line Corporation
Status: Line Client For iOS
Vendor: CVE Published:; 15 December 2025

🔔 Create Line Corporation Vulnerability Alert

What is CVE-2025-14023?

The LINE client for iOS, prior to version 15.19, suffers from a UI spoofing vulnerability that arises from mismatches between the navigation state and the user interface of the in-app browser. This discrepancy can confuse users regarding the authenticity and trustworthiness of the pages they interact with, presenting potential risks under certain conditions. Users may inadvertently engage with malicious content, leading to compromised security and trust.

Affected Version(s)

LINE client for iOS 14.0.0 < 15.19

References

https://hackerone.com/reports/3260386

CVSS V3.1

Score:

3.1

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 15, 2025
Vulnerability Reserved
Dec 4, 2025

JSON