A vulnerability classified as critical has been found in LG SuperSign CMS (Content Management System) (version now known). Affected is some unknown processing of the file signEzUI/playlist/edit/upload/..%2f of the component File Upload. The manipulation with an unknown input leads to a unrestricted upload vulnerability. CWE is classifying the issue as CWE-434. The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:

LG SuperSign CMS allows file upload via signEzUI/playlist/edit/upload/..%2f URIs.

The bug was discovered 09/07/2018. The weakness was shared 09/14/2018 (Website). The advisory is available at mamaquieroserpentester.blogspot.com. This vulnerability is traded as CVE-2018-16287 since 08/31/2018. The exploitability is told to be easy. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details are known, but there is no available exploit. The structure of the vulnerability defines a possible price range of USD $5k-$25k at the moment (estimation calculated on 03/24/2020). This vulnerability is assigned to T1608.002 by the MITRE ATT&CK project.

The vulnerability was handled as a non-public zero-day exploit for at least 7 days. During that time the estimated underground price was around $5k-$25k.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The entries 124073, 124075 and 124077 are related to this item.

Productinfo

Type

• Content Management System

Vendor

• LG

Name

• SuperSign CMS

License

• commercial

CPE 2.3info

• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion