CVE-2014-8757

LG On-Screen Phone < 4.3.009 - Authentication Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-8757. PoCs published by irsl.

AI-analyzed exploit summary This repository contains a working proof-of-concept exploit for CVE-2014-8757, an authentication bypass vulnerability in LG On Screen Phone (OSP) v4.3.009 and earlier. The exploit allows an attacker on the same local network to bypass the authentication dialog and gain full control over the targeted LG smartphone.

Description

LG On-Screen Phone (OSP) before 4.3.010 allows remote attackers to bypass authorization via a crafted request.

Exploits (1)

nomisec WORKING POC 15 stars

by irsl · poc

https://github.com/irsl/lgosp-poc

View Code ZIP pw:eip

This repository contains a working proof-of-concept exploit for CVE-2014-8757, an authentication bypass vulnerability in LG On Screen Phone (OSP) v4.3.009 and earlier. The exploit allows an attacker on the same local network to bypass the authentication dialog and gain full control over the targeted LG smartphone.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: LG On Screen Phone (OSP) v4.3.009 and earlier

No auth needed

Prerequisites: Access to the same local network as the target device · Target device running vulnerable LG OSP version

MITRE ATT&CK

T1550.003 - Pass the Ticket

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/72535

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/72544

Exploit mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2015/Feb/26

Exploit x_refsource_misc

http://packetstormsecurity.com/files/130286/LG-On-Screen-Phone-Authentication-Bypass.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/100733

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/534643/100/0/threaded

Scores

EPSS 0.0451

EPSS Percentile 90.3%

Details

CWE

CWE-284

Status published

Products (1)

lg/on-screen_phone < 4.3.009

Published Feb 17, 2015

Tracked Since Feb 18, 2026