Vulnerabilities > LG > High

DATE CVE VULNERABILITY TITLE RISK
2023-09-04 CVE-2023-4615 Path Traversal vulnerability in LG LED Assistant 2.1.45
This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG LED Assistant.
network
low complexity
lg CWE-22
7.5
7.5
2023-09-04 CVE-2023-4616 Path Traversal vulnerability in LG LED Assistant 2.1.45
This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG LED Assistant.
network
low complexity
lg CWE-22
7.5
7.5
2022-11-21 CVE-2022-45422 Uncontrolled Search Path Element vulnerability in LG Smart Share
When LG SmartShare is installed, local privilege escalation is possible through DLL Hijacking attack.
local
low complexity
lg CWE-427
7.8
7.8
2022-01-28 CVE-2022-23727 Unspecified vulnerability in LG Webos
There is a privilege escalation vulnerability in some webOS TVs.
local
low complexity
lg
7.8
7.8
2020-04-17 CVE-2019-20777 Unspecified vulnerability in Google Android
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software.
network
low complexity
google lg
7.5
7.5
2018-09-21 CVE-2018-17173 Code Injection vulnerability in LG Supersign CMS 2.5
LG SuperSign CMS allows remote attackers to execute arbitrary code via the sourceUri parameter to qsr_server/device/getThumbnail.
network
low complexity
lg CWE-94
7.5
7.5
2018-09-14 CVE-2018-16706 Forced Browsing vulnerability in LG Supersign CMS
LG SuperSign CMS allows TVs to be rebooted remotely without authentication via a direct HTTP request to /qsr_server/device/reboot on port 9080.
network
low complexity
lg CWE-425
7.8
7.8
2018-09-14 CVE-2018-16288 Information Exposure vulnerability in LG Supersign CMS 2.5
LG SuperSign CMS allows reading of arbitrary files via signEzUI/playlist/edit/upload/..%2f URIs.
network
low complexity
lg CWE-200
7.8
7.8
2018-09-14 CVE-2018-16287 Unrestricted Upload of File with Dangerous Type vulnerability in LG Supersign CMS
LG SuperSign CMS allows file upload via signEzUI/playlist/edit/upload/..%2f URIs.
network
low complexity
lg CWE-434
7.5
7.5
2018-08-17 CVE-2018-15482 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android
Certain LG devices based on Android 6.0 through 8.1 have incorrect access control for MLT application intents.
network
low complexity
google lg CWE-732
7.5
7.5