CVE-2024-2863

Summary

This vulnerability allows remote attackers to traverse paths via file upload on the affected LG LED Assistant.

Affected Software

VendorProductVersion RangeStatus
LG ElectronicsLG LED Assistant2.1.65affected

Weaknesses

  • CWE-35: CWE-35: Path Traversal: '…/…//'

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: total

CVE Program Container

Additional References

References