Vulnerabilities > CVE-2019-6005 - Unspecified vulnerability in Kddi Smart TV BOX Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

kddi

critical

NVD

Published: 2019-09-12

Updated: 2020-08-24

Summary

Smart TV Box firmware version prior to 1300 allows remote attackers to bypass access restriction to conduct arbitrary operations on the device without user's intent, such as installing arbitrary software or changing the device settings via Android Debug Bridge port 5555/TCP.

Vulnerable Configurations

Part	Description	Count
OS	Kddi Kddi Smart TV BOX Firmware -	1
Hardware	Kddi Kddi Smart TV BOX -	1

References

http://jvn.jp/en/jp/JVN17127920/index.html