Login Sign Up

CVE-2023-40517

7.5 HIGH

📋 TL;DR

This vulnerability allows remote attackers to read arbitrary files on LG SuperSign Media Editor systems without authentication. Attackers can exploit directory traversal in the ContentRestController's getObject method to access sensitive system files. All installations of affected LG SuperSign Media Editor versions are vulnerable.

💻 Affected Systems

Products:
  • LG SuperSign Media Editor
Versions: Specific versions not detailed in advisory, but all vulnerable versions before patch
Operating Systems: Windows (based on SYSTEM context)
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the ContentRestController component specifically. Authentication not required.

📦 What is this software?

Supersign Media Editor by Lg

View all CVEs affecting Supersign Media Editor →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise via SYSTEM context file access, potentially leading to credential theft, configuration disclosure, and lateral movement.

🟠

Likely Case

Sensitive information disclosure including configuration files, credentials, and system information that could enable further attacks.

🟢

If Mitigated

Limited impact with proper network segmentation and access controls preventing external exploitation.

🌐 Internet-Facing: HIGH - No authentication required and remote exploitation possible.
🏢 Internal Only: HIGH - Even internal attackers can exploit without credentials.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Directory traversal vulnerabilities are typically easy to exploit with basic HTTP requests.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not specified in available references

Vendor Advisory: https://www.zerodayinitiative.com/advisories/ZDI-23-1219/

Restart Required: Yes

Instructions:

1. Contact LG for patch availability 2. Apply latest LG SuperSign Media Editor update 3. Restart the application/service 4. Verify patch effectiveness

🔧 Temporary Workarounds

Network Segmentation

all

Isolate LG SuperSign Media Editor from untrusted networks

Web Application Firewall

all

Implement WAF rules to block directory traversal patterns

🧯 If You Can't Patch

  • Remove internet-facing access immediately
  • Implement strict network access controls limiting connections to trusted IPs only

🔍 How to Verify

Check if Vulnerable:

Test for directory traversal by attempting to access files like ../../../../windows/win.ini via the vulnerable endpoint

Check Version:

Check LG SuperSign Media Editor version in application interface or installation directory

Verify Fix Applied:

Retest directory traversal attempts after patch application; successful attempts should return errors not file contents

📡 Detection & Monitoring

Log Indicators:

  • HTTP requests containing ../ patterns to ContentRestController endpoints
  • Unusual file access patterns from web service

Network Indicators:

  • HTTP requests with directory traversal sequences to the vulnerable endpoint

SIEM Query:

web.url:*../* AND (destination.port:80 OR destination.port:443) AND destination.ip:[LG_SuperSign_IP]

📊 Metadata

CVE ID: CVE-2023-40517
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-22
Published: May 3, 2024
Last Updated: August 12, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-40517, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)