Vulnerabilities > LG > LG LED Assistant > 2.1.65

DATE CVE VULNERABILITY TITLE RISK
2024-03-25 CVE-2024-2862 Weak Password Recovery Mechanism for Forgotten Password vulnerability in LG LED Assistant 2.1.65
This vulnerability allows remote attackers to reset the password of anonymous users without authorization on the affected LG LED Assistant.
network
low complexity
lg CWE-640
critical
9.8
2024-03-25 CVE-2024-2863 Path Traversal vulnerability in LG LED Assistant 2.1.65
This vulnerability allows remote attackers to traverse paths via file upload on the affected LG LED Assistant.
network
low complexity
lg CWE-22
critical
9.8