Ua hōʻike ʻia ka ʻike e pili ana i nā nāwaliwali i ka pūnaewele open OS hiki ke hoʻohana ʻia no ka loaʻa ʻana o nā API haʻahaʻa haʻahaʻa haʻahaʻa o ka ʻōnaehana ʻōnaehana o LG TV a me nā mea hana ʻē aʻe e pili ana i kēia kahua. Hana ʻia ka hoʻouka ʻana ma o ka hoʻomaka ʻana o kahi noi pono ʻole e hoʻohana ana i nā nāwaliwali ma o ke komo ʻana i nā API kūloko, a hiki iā ʻoe ke kākau hou / heluhelu i nā faila a i ʻole hana i nā hana ʻē aʻe i ʻae ʻia e nā API pūnaewele.
ʻO ka mua o nā nāwaliwali i ʻike ʻia e ʻae iā ʻoe e kāpae i nā palena o ke komo ʻana i ka Notification Manager API, a ʻo ka lua e ʻae iā ʻoe e hoʻohana i ka Mana Mana Manaʻo e kiʻi i nā API kūloko ʻē aʻe i hiki ʻole i ka noi mea hoʻohana. ʻAʻole i hāʻawi ʻia nā mea ʻike CVE i nā pilikia. Ua hoʻāʻo ʻia ka hiki ke hoʻohana i nā nāwaliwali ma kahi TV LG 65SM8500PLA me ka firmware e pili ana i ka webOS TV 05.10.30.
ʻO ke kumu o ka nāwaliwali mua ʻo ia ma ke ʻano maʻamau, ʻae ʻia ka hoʻouna ʻana i nā leka i ka webOS i nā lawelawe ʻōnaehana, akā hiki ke kāpae ʻia kēia palena a hiki ke hoʻouna ʻia kahi leka hoʻomaopopo mai kahi noi pono ʻole me ka hoʻohana ʻana i ke kauoha luna-send-pub (com.webos. .lunasendpub). ʻO ka lua o ka vulnerability pili i ka ʻoiaʻiʻo ma ke kāhea ʻana i ka API "luna://com.webos.notification/createAlert" me ka onclick, onclose a i ʻole onfail parameter, hiki iā ʻoe ke hoʻomaka i kekahi mea lawelawe a, no ka laʻana, kāhea i ka ʻōnaehana Download Manager. lawelawe, ka mea i ʻae ʻia e hoʻokuʻu ʻia i nā noi pono e hoʻoiho a mālama i nā faila arbitrary.
Source: opennet.ru