Vulnerability Details CVE-2021-27942
Vizio P65-F1 6.0.31.4-2 and E50x-E1 10.0.31.4-2 Smart TVs allow a threat actor to execute arbitrary code from a USB drive via the Smart Cast functionality, because files on the USB drive are effectively under the web root and can be executed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.2%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 7.2
References
Products affected by CVE-2021-27942
-
cpe:2.3:h:vizio:e50x-e1:-
-
cpe:2.3:h:vizio:p65-f1:-
-
cpe:2.3:o:vizio:e50x-e1_firmware:10.0.31.4-2
-
cpe:2.3:o:vizio:p65-f1_firmware:6.0.31.4-2