8.3

CVE-2014-8757

Exploit
LG On-Screen Phone (OSP) before 4.3.010 allows remote attackers to bypass authorization via a crafted request.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LgOn-screen Phone Version <= 4.3.009
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.51% 0.903
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.3 6.5 10
AV:A/AC:L/Au:N/C:C/I:C/A:C
CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://packetstormsecurity.com/files/130286/LG-On-Screen-Phone-Authentication-Bypass.html
Exploit
http://seclists.org/fulldisclosure/2015/Feb/26
Exploit
http://www.securityfocus.com/archive/1/534643/100/0/threaded
http://www.securityfocus.com/bid/72535
http://www.securityfocus.com/bid/72544
https://exchange.xforce.ibmcloud.com/vulnerabilities/100733