We recently reported how LG was preparing to update a good part of its televisions. An innovative program on the market which ensures up to four updates in five years and thus brings the latest version of webOS available. A noble gesture from the Korean brand that highlights the importance of being up to date.
A policy that becomes more important when it has been discovered that a good number of the brand’s televisions are affected by a vulnerability which can make it easier for an attacker to take control of the television. This is what is known so far and so you can check if yours is at risk.
LG working to cover the vulnerability
The vulnerability has been discovered by the security company BitDefender. A security breach that affects some LG Smart TVs and that can make it easier for an attacker to take control of the television in a way that could introduce malicious code.
With this practice, it could be done from a simple installation of an application, installing malware oheven steal any type of datafrom information that is entered in the browser to knowing what we are seeing.
According to the security company, there are more than 90,000 televisions (of which 963 are in Spain) that they have discovered thanks to Shodan, the search engine for devices connected to the Internet. Specifically, this flaw affects versions 4 to 7 of WebOS that run on LG televisions and the positive part is that to exploit the security gap, both the attacker and the television must be connected to the same WiFi network. These are the located gaps:
- webOS 4.9.7 – 5.30.40 running on LG43UM7000PLA
- webOS 5.5.0 – 04.50.51 running on OLED55CXPUA
- webOS 6.3.3-442 (kisscurl-kinglake) – 03.36.50 running on OLED48C1PUB
- webOS 7.3.1-43 (mullet-mebin) – 03.33.85 running on OLED55A23LA
The models that are affected due to the security flaw are the LG43UM7000PLA, OLED55CXPUA, OLED48C1PUB and OLED55A23LA. If you want to know if your television is one of those affected, you can check the label on the back of the television or in the television settings, in its information.
The positive part is that BitDefender informed LG of the discovery at the end of 2023 and it has been responsible for launching the appropriate update that allows the vulnerability to be corrected. If your television is one of the most affected, you will soon have to receive the update that corrects it, you will have to receive the update that corrects it.
To check if you have the update available, your TV must have an Internet connection. If you have it, access the “Settings” and enter the section “General”. Click on “About this TV” and click on the option “Search for updates”. The TV will search for the latest available update. It may take a while depending on your Internet connection. Once the update starts downloading, you can watch TV again, the download will be done in the background and it will notify you when it is finished.
Via | BitDefender
Cover photo | Juan Carlos López for Xataka
In Xataka SmartHome | This is how easy it is to delete data on a television with Android TV, webOs or Tizen to leave it as fresh out of the box