CVE-2026-58378
8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production. An attacker could request for ADB authorization and gain root level privileges if the victim allows access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Allwinner | H616 | 0 < * | affected |
Weaknesses
- CWE-489: CWE-489 Active Debug Code
References
- https://www.cve.org/CVERecord?id=CVE-2026-58378
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2026/va-26-190-03.json
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.