Remote Code Execution and Denial of Service Vulnerability in Western Digital TV Media Player and TV Live Hub

Remote Code Execution and Denial of Service Vulnerability in Western Digital TV Media Player and TV Live Hub

CVE-2018-1151 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The web server on Western Digital TV Media Player 1.03.07 and TV Live Hub 3.12.13 allow unauthenticated remote attackers to execute arbitrary code or cause denial of service via crafted HTTP requests to toServerValue.cgi.

Learn more about our Web App Pen Testing.