CVE-2018-14839

Name of the Vulnerable Software and Affected Versions LG N1A1 NAS version 3718.510

Description The issue allows for remote command execution, enabling the execution of arbitrary code. The attack vector involves an HTTP POST request with specific parameters.

Recommendations For LG N1A1 NAS version 3718.510, consider restricting access to the HTTP POST endpoint to minimize the risk of exploitation until a patch is available. Avoid using vulnerable parameters in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.