CVE-2022-22820
MEDIUMLINE < 7.4.0 - Denial of Service via Malicious GIF Image
Title source: llmDescription
Due to the lack of media file checks before rendering, it was possible for an attacker to cause abnormal CPU consumption for message recipient by sending specially crafted gif image in LINE for Windows before 7.4.
References (1)
Core 1
Core References
Permissions Required x_refsource_misc
https://hackerone.com/reports/1357400
Scores
CVSS v3
5.5
EPSS
0.0084
EPSS Percentile
53.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (1)
linecorp/line
< 7.4.0
Published
Jan 20, 2022
Tracked Since
Feb 18, 2026