CVE-2023-6319 — CVSS 9.1 (critical): A command injection vulnerability exists in the getAudioMetadata method from the com.webos.service.attachedstoragemanager service on webOS…
CVE-2023-6320 — CVSS 9.1 (critical): A command injection vulnerability exists in the com.webos.service.connectionmanager/tv/setVlanStaticAddress endpoint on webOS versions 5…
CVE-2023-6318 — CVSS 9.1 (critical): A command injection vulnerability exists in the processAnalyticsReport method from the com.webos.service.cloudupload service on webOS…
CVE-2022-23727 — CVSS 7.8 (high): There is a privilege escalation vulnerability in some webOS TVs. Due to wrong setting environments, local attacker is able to perform…
CVE-2022-23731 — CVSS 7.8 (high): V8 javascript engine (heap vulnerability) can cause privilege escalation ,which can impact on some webOS TV models.
CVE-2023-6317 — CVSS 7.2 (high): A prompt bypass exists in the secondscreen.gateway service running on webOS version 4 through 7. An attacker can create a privileged…
CVE-2020-9759 — CVSS 4.6 (medium): A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. This…