CVE-2024-2862

Critical

This vulnerability allows remote attackers to reset the password of anonymous users without authorization on the affected LG LED…

LGE·CWE-287·Published 2024-03-25

CVSS

9.8

EPSS

0.51

KEV

Exploits

cve.orgen

142 chars

This vulnerability allows remote attackers to reset the password of anonymous users without authorization on the affected LG LED Assistant.

NVDen

142 chars

This vulnerability allows remote attackers to reset the password of anonymous users without authorization on the affected LG LED Assistant.

Esta vulnerabilidad permite a atacantes remotos restablecer la contraseña de usuarios anónimos sin autorización en el LG LED Assistant afectado.

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	9.1	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
3.1	Secondary	NVD	9.1	3.9	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H