CVE-2018-14839

CRITICAL KEV

LG N1A1 NAS 3718.510 - RCE

Title source: llm

Description

LG N1A1 NAS 3718.510 is affected by: Remote Command Execution. The impact is: execute arbitrary code (remote). The attack vector is: HTTP POST with parameters.

References (2)

[Exploit, Third Party Advisory] https://medium.com/%400x616163/lg-n1a1-unauthenticated-remote-command-injection-cve-2018-14839-9d2cf760e247

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-14839

Scores

CVSS v3 9.8

EPSS 0.9030

EPSS Percentile 99.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-03-25

VulnCheck KEV 2022-03-25

InTheWild.io 2022-03-25

ENISA EUVD EUVD-2018-6722

CWE

CWE-78

Status published

Products (1)

lg/n1a1_firmware 3718.510

Published May 14, 2019

KEV Added Mar 25, 2022

Tracked Since Feb 18, 2026