All 4 CVE vulnerabilities found in webOS, with AI-generated Chinese analysis, references, and POCs.
Vendor: LG
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-6320 | Command injection in the com.webos.service.connectionmanager/tv/setVlanStaticAddress endpoint CWE-78 | 9.1 | Critical | 2024-04-09 |
| CVE-2023-6319 | Command injection in the getAudioMetadata method from the com.webos.service.attachedstoragemanager service CWE-78 | 9.1 | Critical | 2024-04-09 |
| CVE-2023-6318 | Command injection in the processAnalyticsReport method from the com.webos.service.cloudupload service CWE-78 | 9.1 | Critical | 2024-04-09 |
| CVE-2023-6317 | PIN/prompt bypass on the secondscreen.gateway service allows access to the SSAP API without user interaction CWE-639 | 7.2 | High | 2024-04-09 |
All 4 known CVE vulnerabilities affecting webOS with full Chinese analysis, references, and POCs where available.