LG : Security Vulnerabilities, CVEs, (Bypass)
This vulnerability allows remote attackers to reset the password of anonymous users without authorization on the affected LG LED Assistant.
Max CVSS
9.1
EPSS Score
0.04%
Published
2024-03-25
Updated
2024-03-25
The public API error causes for the attacker to be able to bypass API access control.
Max CVSS
9.8
EPSS Score
0.23%
Published
2022-03-11
Updated
2023-07-03
LG SuperSign CMS allows authentication bypass because the CAPTCHA requirement is skipped if a captcha:pass cookie is sent, and because the PIN is limited to four digits.
Max CVSS
9.8
EPSS Score
0.66%
Published
2018-09-14
Updated
2018-11-07
LG On-Screen Phone (OSP) before 4.3.010 allows remote attackers to bypass authorization via a crafted request.
Max CVSS
8.3
EPSS Score
1.36%
Published
2015-02-17
Updated
2018-10-09
4 vulnerabilities found