Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Sasken Partners with VicOne to Deliver End-to-End Automotive Cybersecu...
Ricoh named in TIME World’s Best Companies of 2025 for employee ...
SU Group Holdings Receives Notice of Delisting from Nasdaq Due to Mini...
Fescaro, TUV Nord join forces on auto cybersecurity compliance
Four high-severity flaws found in ERP firm’s products threaten million...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      Combating the surge in Asia Pacific credential abuse and ransomware

      Combating the surge in Asia Pacific credential abuse and ransomware

      Wednesday, September 17, 2025, 5:06 PM Asia/Singapore | Features
    • Featured

      The rise of digital wallets: What businesses in APAC need to know

      The rise of digital wallets: What businesses in APAC need to know

      Tuesday, September 2, 2025, 1:59 PM Asia/Singapore | Features
    • Featured

      Resilience the true benchmark for smart infrastructure

      Resilience the true benchmark for smart infrastructure

      Wednesday, August 27, 2025, 8:21 PM Asia/Singapore | Features, IoT Security
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning

Select Page

News

Is your LG TV running WebOS 4 through WebOS 7? Patch it immediately!

By CybersecAsia editors | Monday, April 15, 2024, 11:49 AM Asia/Singapore

Is your LG TV running WebOS 4 through WebOS 7? Patch it immediately!

Smart TVs produced and sold in 2018 through 2022, if not updated regularly, could be harboring up to four vulnerabilities

On 9 April this year, cybersecurity researchers disclosed vulnerabilities affecting the proprietary TV operating system software of older LG TVs.

Specifically, the brand’s Linux-based operating system called WebOS was found to have harbored four vulnerabilities potentially affecting over 90,000 devices.

These vulnerabilities, found by Bitdefender researchers across versions 4 through 7, could have allowed unauthorized access and control, including authorization bypasses and command injection. Also, in early 2022, LG had renamed WebOS 6.0 to WebOS 22, throwing confusion into the mix.

Regardless, older LG TVs containing the vulnerabilities could have, instead of being local area network smart devices, been exposed to the internet, allowing possible malicious activities to occur. As different versions of WebOS are loaded and updated on various old models of such TVs, owners of old LG TVs should check if the model they own is affected, and then contact their LG service centers to get the OS patched if necessary.

1. CVE-2023-6317

2. CVE-2023-6318

3. CVE-2023-6319

4. CVE-2023-6320

According to Thomas Richards, Associate Principal Consultant, Synopsys Software Integrity Group, attackers could have used the affected Smart TV as a starting point to launch additional attacks against remote systems or hosts within the home network environment. Also, the owners’ personal data could have been exposed to compromise if the attacker(s) can gain administrative access to the TV.

Richards added: “Users should update their (affected) TV as soon as possible to remediate the vulnerabilities. In general, Smart TV owners should not have their TV directly connected to the internet. Keeping it linked through a router will reduce the likelihood of a compromise since remote attackers will not be able to reach it (easily). Enabling the automated update option on the TV will keep the TV up to date with vendor patches to remediate security risks.”

Share:

PreviousWhat critical browser vulnerability takes three years to address?
NextDid cyberattackers switch to high-hanging fruit in 2023?

Related Posts

Kroll: Social media emerges as a growing business risk

Kroll: Social media emerges as a growing business risk

Wednesday, October 2, 2019

Law enforcement actions, constant RaaS migrations: making ransomware groups harder to track

Law enforcement actions, constant RaaS migrations: making ransomware groups harder to track

Thursday, May 19, 2022

Calling all parents: be careful what trivial information you post online

Calling all parents: be careful what trivial information you post online

Wednesday, September 16, 2020

Improving CX with APIs? Beware of sophisticated bad bots

Improving CX with APIs? Beware of sophisticated bad bots

Monday, May 30, 2022

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • CISOs can navigate emerging risks from autonomous AI with a new security framework

    CISOs can navigate emerging risks from autonomous AI with a new security framework

    See how security leaders can adopt layered strategies addressing intent, governance, and oversight to manage …Read more
  • MoneyMe strengthens fraud prevention and credit decisioning

    MoneyMe strengthens fraud prevention and credit decisioning

    Australian fintech strengthens risk management with SEON to scale lending operations securely and efficiently.Read more
  • PT Kereta Api Indonesia announces nationwide email and communication overhaul

    PT Kereta Api Indonesia announces nationwide email and communication overhaul

    The state railway operator’s upgraded email system improves privacy, operational reliability, and regulatory alignment for …Read more
  • Operationalizing sustainability in cybersecurity: Group-IB’s approach

    Operationalizing sustainability in cybersecurity: Group-IB’s approach

    See how the firm turned malware-group takedowns into measurements of sustainability and resilience gains: by …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.