Vulnerabilities > LG
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-29 | CVE-2019-20781 | Improper Privilege Management vulnerability in LG Bridge An issue was discovered in LG Bridge before April 2019 on Windows. | 4.4 |
| 2020-04-17 | CVE-2019-20777 | Unspecified vulnerability in Google Android An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software. | 7.5 |
| 2020-04-17 | CVE-2019-20769 | Untrusted Search Path vulnerability in LG PC Suite 5.3.27 An issue was discovered in LG PC Suite for LG G3 and earlier (aka LG PC Suite v5.3.27 and earlier). | 4.4 |
| 2020-03-23 | CVE-2020-9759 | Download of Code Without Integrity Check vulnerability in LG Webos A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. | 9.3 |
| 2020-02-12 | CVE-2013-3685 | Race Condition vulnerability in Spritesoftware Spritebackup and Spritebud A Privilege Escalation Vulnerability exists in Sprite Software Spritebud 1.3.24 and 1.3.28 and Backup 2.5.4105 and 2.5.4108 on LG Android smartphones due to a race condition in the spritebud daemon, which could let a local malicious user obtain root privileges. | 6.9 |
| 2019-05-14 | CVE-2018-14839 | OS Command Injection vulnerability in LG N1A1 Firmware 3718.510 LG N1A1 NAS 3718.510 is affected by: Remote Command Execution. | 9.8 |
| 2019-05-13 | CVE-2019-7404 | Information Exposure vulnerability in LG products An issue was discovered on LG GAMP-7100, GAPM-7200, and GAPM-8000 routers. | 5.0 |
| 2019-02-18 | CVE-2019-8372 | Link Following vulnerability in LG Lha.Sys The LHA.sys driver before 1.1.1811.2101 in LG Device Manager exposes functionality that allows low-privileged users to read and write arbitrary physical memory via specially crafted IOCTL requests and elevate system privileges. | 6.9 |
| 2018-09-21 | CVE-2018-17173 | Code Injection vulnerability in LG Supersign CMS 2.5 LG SuperSign CMS allows remote attackers to execute arbitrary code via the sourceUri parameter to qsr_server/device/getThumbnail. | 7.5 |
| 2018-09-14 | CVE-2018-16706 | Forced Browsing vulnerability in LG Supersign CMS LG SuperSign CMS allows TVs to be rebooted remotely without authentication via a direct HTTP request to /qsr_server/device/reboot on port 9080. | 7.8 |