Vulnerabilities > LG > High

DATE CVE VULNERABILITY TITLE RISK
2024-05-03 CVE-2023-40496 Unspecified vulnerability in LG Simple Editor 3.21.0
LG Simple Editor copyStickerContent Directory Traversal Information Disclosure Vulnerability.
network
low complexity
lg
7.5
2024-05-03 CVE-2023-40503 Unspecified vulnerability in LG Simple Editor 3.21.0
LG Simple Editor saveXmlFile XML External Entity Processing Information Disclosure Vulnerability.
network
low complexity
lg
7.5
2024-05-03 CVE-2023-40506 Unspecified vulnerability in LG Simple Editor 3.21.0
LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability.
network
low complexity
lg
7.5
2024-05-03 CVE-2023-40507 Unspecified vulnerability in LG Simple Editor 3.21.0
LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability.
network
low complexity
lg
7.5
2024-05-03 CVE-2023-40510 Insufficiently Protected Credentials vulnerability in LG Simple Editor 3.21.0
LG Simple Editor getServerSetting Authentication Bypass Vulnerability.
network
low complexity
lg CWE-522
7.5
2024-05-03 CVE-2023-40511 Insufficiently Protected Credentials vulnerability in LG Simple Editor 3.21.0
LG Simple Editor checkServer Authentication Bypass Vulnerability.
network
low complexity
lg CWE-522
7.5
2024-05-03 CVE-2023-40515 Unspecified vulnerability in LG Simple Editor 3.21.0
LG Simple Editor joinAddUser Improper Input Validation Denial-of-Service Vulnerability.
network
low complexity
lg
7.5
2024-05-03 CVE-2023-40516 Unspecified vulnerability in LG Simple Editor 3.21.0
LG Simple Editor Incorrect Permission Assignment Local Privilege Escalation Vulnerability.
local
low complexity
lg
7.8
2024-04-09 CVE-2023-6318 Unspecified vulnerability in LG Webos 5.5.0/6.3.3442/7.3.143
A command injection vulnerability exists in the processAnalyticsReport method from the com.webos.service.cloudupload service on webOS version 5 through 7.
network
low complexity
lg
7.2
2024-04-09 CVE-2023-6319 Unspecified vulnerability in LG Webos
A command injection vulnerability exists in the getAudioMetadata method from the com.webos.service.attachedstoragemanager service on webOS version 4 through 7.
network
low complexity
lg
7.2