Vulnerability in Lg Webos
CVE-2022-23727
There is a privilege escalation vulnerability in some webOS TVs. Due to wrong setting environments, local attacker is able to perform specific operation to exploit this vulnerability. Exploitation may cause the attacker to obtain a higher…
EPSS: 0.002 (14.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Lg Webos
- N/a — versions n/a
Public proof-of-concept exploits
References
- product.security@lge.com (x_refsource_MISC, Vendor Advisory)
Frequently asked questions
- What is CVE-2022-23727?
- CVE-2022-23727 is a high-severity vulnerability in Lg Webos. CVSS score: 7.8/10. Published 2022-01-28.
- How severe is CVE-2022-23727?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2022-23727 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.