CVE-2024-2863

Critical

This vulnerability allows remote attackers to traverse paths via file upload on the affected LG LED Assistant.

LGE·CWE-35·Published 2024-03-25

CVSS

9.8

EPSS

0.67

KEV

Exploits

cve.orgen

110 chars

This vulnerability allows remote attackers to traverse paths via file upload on the affected LG LED Assistant.

NVDen

110 chars

This vulnerability allows remote attackers to traverse paths via file upload on the affected LG LED Assistant.

NVDes

126 chars

Esta vulnerabilidad permite a atacantes remotos atravesar rutas mediante la carga de archivos en el LG LED Assistant afectado.

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	5.3	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N