319 matches found
CVE-2020-26597
The CVE-2020-26597 entry concerns LG mobile devices running Android 9.0–10, where the Wi‑Fi subsystem has an incorrect input validation that leads to a crash. The issue is tied to LG’s internal ID LVE-SMP-200022 (October 2020). Affected component: Wi‑Fi stack on affected LG devices; root cause st...
CVE-2020-26598
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, and 9.0 software. The Network Management component could allow an unauthorized actor to kill a TCP connection. The LG ID is LVE-SMP-200023 October 2020...
CVE-2020-26598
CVE-2020-26598 affects LG mobile devices running Android 8.0–9.0, with the issue in the Network Management component. The root cause is described as a vulnerability that could allow an unauthorized actor to terminate (kill) an established TCP connection. CVSS metrics indicate a network vector wit...
CVE-2020-25281
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 software. Applications with sensitive security settings such as the package verifier application mishandle unknown-source installations. The LG ID is LVE-SMP-190002 September 2020...
Design/Logic Flaw
An issue was discovered on LG mobile devices with Android OS 10 software. The lguicc software for the LG Universal Integrated Circuit Card allows attackers to bypass intended access restrictions on property values. The LG ID is LVE-SMP-200020 September 2020...
CVE-2020-25281
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 software. Applications with sensitive security settings such as the package verifier application mishandle unknown-source installations. The LG ID is LVE-SMP-190002 September 2020...
CVE-2020-25281
The CVE-2020-25281 entry concerns LG mobile devices running Android 7.x–8.1 where apps with sensitive security settings (e.g., the package verifier) mishandle unknown-source installations. Affected component/function relates to the installation pipeline for unknown sources. Underlying impact stat...
CVE-2020-25282
An issue was discovered on LG mobile devices with Android OS 10 software. The lguicc software for the LG Universal Integrated Circuit Card allows attackers to bypass intended access restrictions on property values. The LG ID is LVE-SMP-200020 September 2020...
CVE-2020-25058
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9, and 10 software. The networkmanagement service does not properly restrict configuration changes. The LG ID is LVE-SMP-200012 July 2020...
CVE-2020-25065
An issue was discovered on LG mobile devices with Android OS 4.4, 5.0, 5.1, 6.0, 7.0, 7.1, 8.0, 8.1, 9.0, and 10 software. Key logging may occur because of an obsolete API. The LG ID is LVE-SMP-170010 August 2020...
CVE-2020-25061
An issue was discovered on LG mobile devices with Android OS 9 and 10 software on the VZW network. lgeproperty allows property overwrites. The LG ID is LVE-SMP-200016 July 2020...
CVE-2020-25062
An issue was discovered on LG mobile devices with Android OS 9 and 10 software. LGTelephonyProvider allows a bypass of intended privilege restrictions. The LG ID is LVE-SMP-200017 July 2020...
CVE-2020-25057
An issue was discovered on LG mobile devices with Android OS 10 software. MDMService does not properly restrict APK installations. The LG ID is LVE-SMP-200011 July 2020...
Design/Logic Flaw
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9, and 10 software. The networkmanagement service does not properly restrict configuration changes. The LG ID is LVE-SMP-200012 July 2020...
Code injection
An issue was discovered on LG mobile devices with Android OS 10 software. MDMService does not properly restrict APK installations. The LG ID is LVE-SMP-200011 July 2020...
Code injection
An issue was discovered on LG mobile devices with Android OS 9 and 10 software on the VZW network. lgeproperty allows property overwrites. The LG ID is LVE-SMP-200016 July 2020...
Input validation
An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. A service crash may occur because of incorrect input validation. The LG ID is LVE-SMP-200013 July 2020...
Code injection
An issue was discovered on LG mobile devices with Android OS 4.4, 5.0, 5.1, 6.0, 7.0, 7.1, 8.0, 8.1, 9.0, and 10 software. Key logging may occur because of an obsolete API. The LG ID is LVE-SMP-170010 August 2020...
Input validation
An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. An application crash can occur because of incorrect application-level input validation. The LG ID is LVE-SMP-200018 July 2020...
CVE-2020-25057
An issue was discovered on LG mobile devices with Android OS 10 software. MDMService does not properly restrict APK installations. The LG ID is LVE-SMP-200011 July 2020...