📦 Webos

This CVE describes a command injection vulnerability in LG webOS TVs that allows authenticated attackers to execute arbitrary commands as the dbus user. The vulnerability affects specific webOS versio...

This CVE describes a command injection vulnerability in LG webOS TV software that allows authenticated attackers to execute arbitrary commands as root. The vulnerability affects webOS versions 5 throu...

CVE-2022-23730 is an API access control bypass vulnerability in LG webOS TV software that allows attackers to bypass authentication mechanisms and gain unauthorized access to protected API endpoints. ...

This vulnerability allows attackers to bypass the security PIN prompt in the secondscreen.gateway service on affected LG webOS smart TVs. Attackers can create privileged accounts without user interact...

This is a privilege escalation vulnerability in LG webOS smart TVs that allows local attackers to gain higher system privileges through misconfigured environment settings. Attackers with physical or n...