Critical LG WebOS Flaw Lets Local Attackers Take Over Smart TVs

A critical vulnerability has been uncovered in LG’s WebOS for smart TVs that allows attackers on the same local network to bypass authentication and take complete control of affected sets. The flaw, disclosed by the cybersecurity research group SSD Secure Disclosure, highlights the growing security risks associated with smart home devices.

How The Attack Works: An Open Door

The vulnerability originates from a browser service on WebOS TV. According to the technical details published by SSD Secure Disclosure, this service opens a special network port whenever a USB storage device is attached to the TV. This port is meant to allow other devices on the network to access files from limited, safe directories on the USB drive.

However, due to a simple but severe "path traversal" bug, an attacker on the same Wi-Fi network can trick this service. Instead of accessing a safe folder, they can craft a request to access sensitive system files from the TV's main operating system. By doing so, they can gain the necessary credentials to achieve root access, effectively taking complete control of the television.

"The vulnerability's severity and impact earned it first place in the LG category at the TyphoonPWN competition. It demonstrates how a seemingly minor feature can lead to a complete device takeover." — SSD Secure Disclosure Report

What's at Risk?

An attacker with root access to your smart TV could potentially:

• Install malware or spyware on the TV.
• Access any accounts (like Netflix or Amazon) logged into the TV.
• Use the TV's microphone or camera (if present) to spy on you.
• Use the compromised TV as a launchpad to attack other devices on your home network.