216.73.216.133

CVE-2025-14020

· Published 15/12/2025 07:15 · Modified 18/12/2025 02:04

Labels: CVE-2025-14020 2025-12-15CVE-2025-14020[email protected]

Essential information

Published
15/12/2025 07:15
Modified
18/12/2025 02:04
Author
Creator
CVSS
5.4 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

CVSS metrics

Description

LINE client for Android versions prior to 14.20 contains a UI spoofing vulnerability in the in-app browser where the full-screen security Toast notification is not properly re-displayed when users return from another application, potentially allowing attackers to conduct phishing attacks by impersonating legitimate interfaces.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
linecorp / line cpe:2.3:a:linecorp:line:*:*:*:*:*:android:*:*

References