CVE-2023-6317
PIN/prompt bypass on the secondscreen.gateway service allows access to the SSAP API without user interaction
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A prompt bypass exists in the secondscreen.gateway service running on webOS version 4 through 7. An attacker can create a privileged account without asking the user for the security PIN.
Full versions and TV models affected:
webOS 4.9.7 - 5.30.40 running on LG43UM7000PLA
webOS 5.5.0 - 04.50.51 running on OLED55CXPUA
webOS 6.3.3-442 (kisscurl-kinglake) - 03.36.50 running on OLED48C1PUB
webOS 7.3.1-43 (mullet-mebin) - 03.33.85 running on OLED55A23LA
Existe una omisión rápida en el servicio secondscreen.gateway que se ejecuta en webOS versión 4 a 7. Un atacante puede crear una cuenta privilegiada sin pedirle al usuario el PIN de seguridad. Versiones completas y modelos de TV afectados: webOS 4.9.7 - 5.30.40 ejecutándose en LG43UM7000PLA webOS 5.5.0 - 04.50.51 ejecutándose en OLED55CXPUA webOS 6.3.3-442 (kisscurl-kinglake) - 03.36.50 ejecutándose en OLED48C1PUB webOS 7.3. 1-43 (mullet-mebin) - 33.03.85 ejecutándose en OLED55A23LA
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2023-11-27 CVE Reserved
- 2024-04-09 CVE Published
- 2024-04-10 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-639: Authorization Bypass Through User-Controlled Key
CAPEC
- CAPEC-115: Authentication Bypass
References (2)
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://lgsecurity.lge.com/bulletins/tv#updateDetails | 2024-04-18 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
LG Search vendor "LG" | WebOS Search vendor "LG" for product "WebOS" | 4.9.7 Search vendor "LG" for product "WebOS" and version "4.9.7" | en |
Affected
| ||||||
LG Search vendor "LG" | WebOS Search vendor "LG" for product "WebOS" | 5.5.0 Search vendor "LG" for product "WebOS" and version "5.5.0" | en |
Affected
|