Login Sign Up

CVE-2021-27944

9.8 CRITICAL
Remote Code Execution Authentication Bypass

📋 TL;DR

This vulnerability allows unauthenticated attackers to execute arbitrary operating system commands on affected Vizio Smart TVs by exploiting insufficient access controls on high-privileged APIs. Attackers can upload malicious files to achieve remote code execution. Users of specific Vizio TV models with vulnerable firmware versions are affected.

💻 Affected Systems

Products:
  • Vizio P65-F1 Smart TV
  • Vizio E50x-E1 Smart TV
Versions: P65-F1: 6.0.31.4-2, E50x-E1: 10.0.31.4-2
Operating Systems: Vizio SmartCast OS
Default Config Vulnerable: ⚠️ Yes
Notes: Other Vizio models with similar firmware may be vulnerable but not confirmed. TVs connected to any network (Wi-Fi or Ethernet) are vulnerable.

📦 What is this software?

E50x E1 Firmware by Vizio

View all CVEs affecting E50x E1 Firmware →

P65 F1 Firmware by Vizio

View all CVEs affecting P65 F1 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of the TV system allowing attackers to install persistent malware, access local network resources, spy on users via camera/microphone, or use the TV as a pivot point into the home network.

🟠

Likely Case

Attackers execute arbitrary commands to install cryptocurrency miners, botnet clients, or surveillance tools, potentially affecting TV performance and user privacy.

🟢

If Mitigated

With proper network segmentation and access controls, impact is limited to the TV device itself without lateral movement to other network devices.

🌐 Internet-Facing: HIGH
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit involves file upload to vulnerable APIs without authentication. Public technical details available from L9 Group advisory.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Later firmware versions than those listed

Vendor Advisory: https://www.vizio.com

Restart Required: Yes

Instructions:

1. Navigate to TV Settings > System > Check for Updates. 2. Install any available firmware updates. 3. Restart the TV after update completes.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate Smart TV on separate VLAN or guest network to prevent lateral movement

Disable Unused Services

all

Turn off SmartCast features if not needed and disable remote management

🧯 If You Can't Patch

  • Disconnect TV from internet and use only as display device
  • Place TV behind firewall with strict inbound/outbound rules

🔍 How to Verify

Check if Vulnerable:

Check TV firmware version in Settings > System > System Information

Check Version:

Not applicable - use TV settings menu

Verify Fix Applied:

Confirm firmware version is newer than vulnerable versions listed

📡 Detection & Monitoring

Log Indicators:

  • Unusual file uploads to TV APIs
  • Unexpected process execution
  • Network connections to suspicious IPs

Network Indicators:

  • HTTP POST requests to TV APIs with file uploads
  • Unusual outbound connections from TV

SIEM Query:

source="tv_logs" AND (event="file_upload" OR event="api_access") AND user="unauthenticated"

📊 Metadata

CVE ID: CVE-2021-27944
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-78
Published: August 26, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-27944, you might also want to check these:

CVE-2023-2564 10.0

This CVE describes an OS command injection vulnerability in scanservjs web scanning software that al...

Same vulnerability type (CWE-78)
CVE-2024-58338 10.0

Anevia Flamingo XL 3.2.9 contains a restricted shell escape vulnerability that allows remote attacke...

Same vulnerability type (CWE-78)
CVE-2025-26389 10.0

This critical vulnerability allows unauthenticated remote attackers to execute arbitrary code with r...

Same vulnerability type (CWE-78)