Vulnerabilities Identified in LG WebOS

Bitdefender researchers disclosed multiple critical vulnerabilities in LG webOS TV (versions 4 through 7) that enable attackers to bypass PIN authorization, create privileged accounts, and perform authenticated command injection to gain root or dbus-level execution (four CVEs). The report includes technical exploitation paths (service endpoints, command construction, file-based triggers), lists affected firmware builds, notes that many devices expose the service to the Internet, and provides a disclosure/timeline and vendor patches.