5 matches found
CVE-2025-55971
TCL 65C655 Smart TV, running firmware version V8-R75PT01-LF1V269.001116 Android TV, Kernel 5.4.242+, is vulnerable to a blind, unauthenticated Server-Side Request Forgery SSRF vulnerability via the UPnP MediaRenderer service AVTransport:1. The device accepts unauthenticated SetAVTransportURI SOAP...
CVE-2025-55971
TCL 65C655 Smart TV, running firmware version V8-R75PT01-LF1V269.001116 Android TV, Kernel 5.4.242+, is vulnerable to a blind, unauthenticated Server-Side Request Forgery SSRF vulnerability via the UPnP MediaRenderer service AVTransport:1. The device accepts unauthenticated SetAVTransportURI SOAP...
CVE-2025-55971
CVE-2025-55971 affects TCL 65C655 Smart TV firmware V8-R75PT01-LF1V269.001116 (Android TV, Kernel 5.4.242+). The issue is a blind, unauthenticated Server-Side Request Forgery via the UPnP MediaRenderer AVTransport:1 service. The device accepts unauthenticated SetAVTransportURI SOAP requests over ...
CVE-2025-55972
CVE-2025-55972 affects TCL Smart TVs with a vulnerable UPnP/DLNA MediaRenderer implementation. The issue arises when an attacker sends a flood of malformed or oversized SetAVTransportURI SOAP requests to the UPnP control endpoint, enabling a remote, unauthenticated Denial of Service. The device b...
CVE-2020-6842
D-Link DCH-M225 1.05b01 and earlier devices allow remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the media renderer name. Recent assessments: kevthehermit at February 22, 2020 11:00pm UTC reported: This analysis is a transcript of a public gist β Original...