CVE-2025-14020

Q: What is the severity of CVE-2025-14020?

CVE-2025-14020 is classified as a moderate severity vulnerability due to its potential to facilitate phishing attacks.

Q: How do I fix CVE-2025-14020?

To mitigate CVE-2025-14020, update your LINE client for Android to version 14.20 or later.

Q: What is the impact of CVE-2025-14020?

The impact of CVE-2025-14020 allows attackers to spoof the UI in the in-app browser, increasing the risk of phishing attempts.

Q: Which versions of LINE are affected by CVE-2025-14020?

LINE client for Android versions prior to 14.20 are affected by CVE-2025-14020.

Q: What type of vulnerability is CVE-2025-14020?

CVE-2025-14020 is a UI spoofing vulnerability that affects the in-app browser functionality of the LINE application.

Published Dec 15, 2025

Updated

LINE client for Android versions prior to 14.20 contains a UI spoofing vulnerability in the in-app browser where the full-screen security Toast notification is not properly re-displayed when users return from another application, potentially allowing attackers to conduct phishing attacks by impersonating legitimate interfaces.

Affected Software

2 affected components

LINE LINE<14.20

linecorp Line Android<14.20.0

Event History

Dec 15, 2025

CVE Published

via MITRE·06:39 AM

Data Sourced

via MITRE·06:39 AM

DescriptionSeverityWeakness

Data Sourced

via NVD·07:15 AM

DescriptionSeverityWeaknessAffected Software

Frequently Asked Questions

What is the severity of CVE-2025-14020?

CVE-2025-14020 is classified as a moderate severity vulnerability due to its potential to facilitate phishing attacks.

How do I fix CVE-2025-14020?

To mitigate CVE-2025-14020, update your LINE client for Android to version 14.20 or later.

What is the impact of CVE-2025-14020?

The impact of CVE-2025-14020 allows attackers to spoof the UI in the in-app browser, increasing the risk of phishing attempts.

Which versions of LINE are affected by CVE-2025-14020?

LINE client for Android versions prior to 14.20 are affected by CVE-2025-14020.

What type of vulnerability is CVE-2025-14020?

CVE-2025-14020 is a UI spoofing vulnerability that affects the in-app browser functionality of the LINE application.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.