Descriptions

LINE 3.2.1.83 and earlier on Windows and 3.2.1 and earlier on OS X does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Severity

  • CVSS Score: 4.3

Affected Versions

  • LINE 3.2.1.83 and earlier on Windows
  • LINE 3.2.1 and earlier on OS X

Fix

  • LINE should be updated to latest version.

Updated: