A vulnerability in the TCL Android Smart TV series V8-R851T02-LF1 V295 and below and V8-T658T01-LF1 V373 and below by TCL Technology Group Corporation allows an attacker on the adjacent network to arbitrarily browse and download sensitive files over an insecure web server running on port 7989 that lists all files & directories. An unprivileged remote attacker on the adjacent network, can download most system files, leading to serious critical information disclosure. Also, some TV models and/or FW versions may expose the webserver with the entire filesystem accessible on another port. For example, nmap scan for all ports run directly from the TV model U43P6046 (Android 8.0) showed port 7983 not mentioned in the original CVE description, but containing the same directory listing of the entire filesystem. This webserver is bound (at least) to localhost interface and accessible freely to all unprivileged installed apps on the Android such as a regular web browser. Any app can therefore read any files of any other apps including Android system settings including sensitive data such as saved passwords, private keys etc.
This vulnerability carries a MEDIUM severity rating with a CVSS v3.1 score of 6.5, indicating it requires adjacent network access with relatively low complexity without requiring user interaction and does not require pre-existing privileges . The vulnerability impacts confidentiality (data exposure), for affected systems. Impacting 14 products from tcl, from tcl, from tcl and 11 others, organizations running these solutions should prioritize assessment and patching.
Reported in 2020, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.
2020-11-10T18:15:12.043
2024-11-21T05:21:10.800
Modified
CVSSv3.1: 6.5 (MEDIUM)
AV:A/AC:L/Au:N/C:P/I:N/A:N
6.5
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | tcl | 32s330_firmware | < v8-r851t10-lf1v091 | Yes |
| Hardware | tcl | 32s330 | - | No |
| Operating System | tcl | 40s330_firmware | < v8-r851t10-lf1v091 | Yes |
| Hardware | tcl | 40s330 | - | No |
| Operating System | tcl | 43s434_firmware | < v8-r851t02-lf1v440 | Yes |
| Hardware | tcl | 43s434 | - | No |
| Operating System | tcl | 50s434_firmware | < v8-r851t02-lf1v440 | Yes |
| Hardware | tcl | 50s434 | - | No |
| Operating System | tcl | 55s434_firmware | < v8-r851t02-lf1v440 | Yes |
| Hardware | tcl | 55s434 | - | No |
| Operating System | tcl | 65s434_firmware | < v8-r851t02-lf1v440 | Yes |
| Hardware | tcl | 65s434 | - | No |
| Operating System | tcl | 75s434_firmware | < v8-r851t02-lf1v440 | Yes |
| Hardware | tcl | 75s434 | - | No |
SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For tcl's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.