CVE-2022-23727
First published: Fri Jan 28 2022(Updated: )
There is a privilege escalation vulnerability in some webOS TVs. Due to wrong setting environments, local attacker is able to perform specific operation to exploit this vulnerability. Exploitation may cause the attacker to obtain a higher privilege
Credit: product.security@lge.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| LG WebOS | >=3.0<=5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this webOS TVs privilege escalation vulnerability?
The vulnerability ID for this webOS TVs privilege escalation vulnerability is CVE-2022-23727.
What is the severity of CVE-2022-23727?
The severity of CVE-2022-23727 is high with a severity value of 7.8.
What is the affected software for CVE-2022-23727?
The affected software for CVE-2022-23727 is LG webOS versions 3.0 to 5.0.
How can a local attacker exploit CVE-2022-23727?
A local attacker can exploit CVE-2022-23727 by performing specific operations to escalate privileges.
Is there a fix available for CVE-2022-23727?
Yes, LG has released a fix for CVE-2022-23727. It is recommended to update the webOS TV software to the latest version.
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/author
- agent/softwarecombine
- agent/references
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/lg
- canonical/lg webos
- version/lg webos/3.0
- version/lg webos/5.0