Lg Webos
8 CVEs affecting Lg Webos. Latest disclosed: 2024-04-09. Critical: 4, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-23730 | Critical | 9.8 | 2022-03-11 | The public API error causes for the attacker to be able to bypass API access control. |
CVE-2023-6320 | Critical | 9.1 | 2024-04-09 | A command injection vulnerability exists in the com.webos.service.connectionmanager/tv/setVlanStaticAddress endpoint on webOS versions 5 and 6. A series of spe… |
CVE-2023-6319 | Critical | 9.1 | 2024-04-09 | A command injection vulnerability exists in the getAudioMetadata method from the com.webos.service.attachedstoragemanager service on webOS version 4 through 7… |
CVE-2023-6318 | Critical | 9.1 | 2024-04-09 | A command injection vulnerability exists in the processAnalyticsReport method from the com.webos.service.cloudupload service on webOS version 5 through 7. A se… |
CVE-2022-23731 | High | 7.8 | 2022-03-11 | V8 javascript engine (heap vulnerability) can cause privilege escalation ,which can impact on some webOS TV models. |
CVE-2022-23727 | High | 7.8 | 2022-01-28 | There is a privilege escalation vulnerability in some webOS TVs. Due to wrong setting environments, local attacker is able to perform specific operation to exp… |
CVE-2023-6317 | High | 7.2 | 2024-04-09 | A prompt bypass exists in the secondscreen.gateway service running on webOS version 4 through 7. An attacker can create a privileged account without asking the… |
CVE-2020-9759 | Medium | 4.6 | 2020-03-23 | A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. This vulnerability is due to wr… |