Vulnerabilities > LG

DATE CVE VULNERABILITY TITLE RISK
2022-03-11 CVE-2022-23730 Incorrect Authorization vulnerability in LG Webos 5.0/6.0
The public API error causes for the attacker to be able to bypass API access control.
network
low complexity
lg CWE-863
7.5
2022-03-11 CVE-2022-23731 Unspecified vulnerability in LG Webos 5.0/6.0
V8 javascript engine (heap vulnerability) can cause privilege escalation ,which can impact on some webOS TV models.
local
low complexity
lg
4.6
2022-01-28 CVE-2022-23727 Improper Privilege Management vulnerability in LG Webos 3.0/5.0
There is a privilege escalation vulnerability in some webOS TVs.
local
low complexity
lg CWE-269
4.6
2021-08-24 CVE-2021-38306 OS Command Injection vulnerability in LG N1T1 Firmware
Network Attached Storage on LG N1T1*** 10124 devices allows an unauthenticated attacker to gain root access via OS command injection in the en/ajp/plugins/access.ssh/checkInstall.php destServer parameter.
network
low complexity
lg CWE-78
critical
10.0
2020-09-14 CVE-2020-7807 Improper Validation of Integrity Check Value vulnerability in LG products
A vulnerability that can hijack a DLL file that is loaded during products(LGPCSuite_Setup, IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup) installation into a DLL file that the hacker wants.
local
lg CWE-354
1.9
2020-04-29 CVE-2019-20781 Improper Privilege Management vulnerability in LG Bridge
An issue was discovered in LG Bridge before April 2019 on Windows.
local
lg CWE-269
4.4
2020-04-17 CVE-2019-20777 Unspecified vulnerability in Google Android
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software.
network
low complexity
google lg
7.5
2020-04-17 CVE-2019-20769 Untrusted Search Path vulnerability in LG PC Suite 5.3.27
An issue was discovered in LG PC Suite for LG G3 and earlier (aka LG PC Suite v5.3.27 and earlier).
local
lg CWE-426
4.4
2020-03-23 CVE-2020-9759 Download of Code Without Integrity Check vulnerability in LG Webos
A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files.
network
lg CWE-494
critical
9.3
2020-02-12 CVE-2013-3685 Race Condition vulnerability in Spritesoftware Spritebackup and Spritebud
A Privilege Escalation Vulnerability exists in Sprite Software Spritebud 1.3.24 and 1.3.28 and Backup 2.5.4105 and 2.5.4108 on LG Android smartphones due to a race condition in the spritebud daemon, which could let a local malicious user obtain root privileges.
6.9