PT-2021-23444 · Penguin · Penguin Aurora Box

Published

2021-10-26

Updated

2022-07-12

CVE-2021-41873

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions Penguin Aurora TV Box 41502

Description An unauthorized access issue exists in the Penguin Aurora Box, allowing an attacker to gain unauthorized access to a specific link and remotely control the TV.

Recommendations For Penguin Aurora TV Box 41502, consider restricting access to the specific link that can be used for remote control until a patch is available. As a temporary workaround, disable any features that allow remote control of the TV until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-41873

Affected Products

Penguin Aurora Box

PT-2021-23444 · Penguin · Penguin Aurora Box

CVE-2021-41873

Related Identifiers

Affected Products

References · 4