CVE-2025-14019
Published Dec 15, 2025
·Updated
LINE client for Android versions from 13.8 to 15.5 is vulnerable to UI spoofing in the in-app browser where a specific layout could obscure the full-screen warning prompt, potentially allowing attackers to conduct phishing attacks.
Affected Software
2 affected components
LINE Corporation LINE for Android>=13.8<=15.5
linecorp Line Android>=13.8.0<=15.5.0
Event History
Dec 15, 2025
CVE Published
via MITRE·06:38 AM
Data Sourced
via MITRE·06:38 AM
DescriptionSeverityWeakness
Data Sourced
via NVD·07:15 AM
DescriptionSeverityWeaknessAffected Software
Frequently Asked Questions
1
What is the severity of CVE-2025-14019?
CVE-2025-14019 has been rated as a medium severity vulnerability due to the potential for phishing attacks.
2
How do I fix CVE-2025-14019?
To mitigate CVE-2025-14019, users should update the LINE app to a version beyond 15.5.
3
What versions of LINE for Android are affected by CVE-2025-14019?
CVE-2025-14019 affects LINE for Android versions from 13.8 to 15.5.
4
What kind of attack can CVE-2025-14019 enable?
CVE-2025-14019 can enable UI spoofing attacks, allowing potential phishing attempts.
5
Is there a workaround for CVE-2025-14019?
Currently, there are no recommended workarounds for CVE-2025-14019 other than updating the app.