LG NAS Device Remote Command Injection Vulnerability
BID:103922
Info
LG NAS Device Remote Command Injection Vulnerability
| Bugtraq ID: | 103922 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 18 2018 12:00AM |
| Updated: | Apr 18 2018 12:00AM |
| Credit: | vpnMentor |
| Vulnerable: |
LG NAS Device 0 |
| Not Vulnerable: | |
Discussion
LG NAS Device Remote Command Injection Vulnerability
LG NAS Device is prone to a remote command-injection vulnerability.
Attackers can exploit this issue to execute arbitrary commands in the context of the authenticated user.
LG NAS Device is prone to a remote command-injection vulnerability.
Attackers can exploit this issue to execute arbitrary commands in the context of the authenticated user.
Exploit / POC
LG NAS Device Remote Command Injection Vulnerability
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
Solution / Fix
LG NAS Device Remote Command Injection Vulnerability
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].