CVE-2022-27152

MEDIUM

RokuOS <9.4.0-4200 - Code Injection

Title source: llm
STIX 2.1

Description

Roku devices running RokuOS v9.4.0 build 4200 or earlier that uses a Realtek WiFi chip is vulnerable to Arbitrary file modification.

References (2)

Core 2

Scores

CVSS v3 5.7
EPSS 0.0030
EPSS Percentile 21.9%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

Status published
Products (1)
roku/roku_os < 9.4.0
Published Apr 08, 2022
Tracked Since Feb 18, 2026