Vulnerabilities > CVE-2019-6005 - Unspecified vulnerability in Kddi Smart TV BOX Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

kddi

NVD

Published: 2019-09-12

Updated: 2020-08-24

Summary

Smart TV Box firmware version prior to 1300 allows remote attackers to bypass access restriction to conduct arbitrary operations on the device without user's intent, such as installing arbitrary software or changing the device settings via Android Debug Bridge port 5555/TCP.

Vulnerable Configurations

Part	Description	Count
OS	Kddi Kddi Smart TV BOX Firmware *	1
Hardware	Kddi Kddi Smart TV BOX -	1

References

http://jvn.jp/en/jp/JVN17127920/index.html