CVE-2018-16946

HIGH

LG Smart Network Camera Firmware 1310250-1508190 - Unauthenticated Sensitive Information Exposure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-16946. PoCs published by Ege Balci.

AI-analyzed exploit summary This exploit targets an authentication bypass vulnerability in LG Smart IP Cameras, allowing unauthenticated download of backup files containing credentials. It brute-forces backup filenames and extracts sensitive data from the downloaded archives.

Description

LG LNB*, LND*, LNU*, and LNV* smart network camera devices have broken access control. Attackers are able to download /updownload/t.report (aka Log & Report) files and download backup files (via download.php) without authenticating. These backup files contain user credentials and configuration information for the camera device. An attacker is able to discover the backup filename via reading the system logs or report data, or just by brute-forcing the backup filename pattern. It may be possible to authenticate to the admin account with the admin password.

Exploits (1)

exploitdb WORKING POC

by Ege Balci · pythonwebappshardware

https://www.exploit-db.com/exploits/45394

View Code ZIP pw:eip

This exploit targets an authentication bypass vulnerability in LG Smart IP Cameras, allowing unauthenticated download of backup files containing credentials. It brute-forces backup filenames and extracts sensitive data from the downloaded archives.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: LG Smart IP Camera (models LNB*/LND*/LNU*/LNV*) versions 1310250 to 1508190

No auth needed

Prerequisites: Network access to the target device · Knowledge of the target URL

MITRE ATT&CK

T1110 - Brute Force T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/45394/

Exploit, Third Party Advisory x_refsource_misc

https://github.com/EgeBalci/LG-Smart-IP-Device-Backup-Download

View Exploit ZIP pw:eip

Scores

CVSS v3 7.5

EPSS 0.0935

EPSS Percentile 94.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-552

Status published

Products (18)

lg/lnb5110_firmware 1310250 - 1508190

lg/lnb5320_firmware 1310250 - 1508190

lg/lnb5320r_firmware 1310250 - 1508190

lg/lnb7210_firmware 1310250 - 1508190

lg/lnd3230r_firmware 1310250 - 1508190

lg/lnd5110_firmware 1310250 - 1508190

lg/lnd5110r_firmware 1310250 - 1508190

lg/lnd5220r_firmware 1310250 - 1508190

lg/lnd7210_firmware 1310250 - 1508190

lg/lnd7210r_firmware 1310250 - 1508190

... and 8 more

Published Sep 12, 2018

Tracked Since Feb 18, 2026