CVE-2023-48129

Summary

CVE-2023-48129 is a vulnerability affecting the kimono-oldnew mini-app on Line version 13.6.1. This issue enables attackers to manipulate notifications by exploiting the leakage of the channel access token. By sending crafted malicious notifications, attackers can potentially gain unauthorized access or perform malicious actions within an affected user's Line account. This vulnerability may lead to serious privacy concerns and potential data breaches. Users are strongly advised to update their Line application to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.