CVE-2021-36214 MEDIUM

CVE-2021-36214

Vendor Line Corporation
Product LINE client for iOS
Published July 13, 2021
Last update April 9, 2026

CVSS base score

6.1/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

What the vulnerability does

01Description

LINE client for iOS before 10.16.3 allows cross site script with specific header in WebView.

Key dates

02Disclosure timeline

July 13, 2021 CVE published
April 9, 2026 Record updated