Vulnerabilities > LG > High

DATE CVE VULNERABILITY TITLE RISK
2018-09-14 CVE-2018-16706 Forced Browsing vulnerability in LG Supersign CMS
LG SuperSign CMS allows TVs to be rebooted remotely without authentication via a direct HTTP request to /qsr_server/device/reboot on port 9080.
network
low complexity
lg CWE-425
7.5
2018-09-14 CVE-2018-16288 Information Exposure vulnerability in LG Supersign CMS 2.5
LG SuperSign CMS allows reading of arbitrary files via signEzUI/playlist/edit/upload/..%2f URIs.
network
low complexity
lg CWE-200
8.6
2018-09-12 CVE-2018-16946 Files or Directories Accessible to External Parties vulnerability in LG products
LG LNB*, LND*, LNU*, and LNV* smart network camera devices have broken access control.
network
low complexity
lg CWE-552
7.5