Vulnerabilities > Sony
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-09 | CVE-2019-11890 | Resource Exhaustion vulnerability in Sony Bravia Firmware Sony Bravia Smart TV devices allow remote attackers to cause a denial of service (device hang or reboot) via a SYN flood attack over a wired or Wi-Fi LAN. | 7.8 |
| 2019-07-09 | CVE-2019-11889 | Unspecified vulnerability in Sony Bravia Firmware Sony BRAVIA Smart TV devices allow remote attackers to cause a denial of service (device hang) via a crafted web page over HbbTV. | 7.8 |
| 2019-07-05 | CVE-2019-5982 | Download of Code Without Integrity Check vulnerability in Sony Vaio Update 7.3.0.03150 Improper download file verification vulnerability in VAIO Update 7.3.0.03150 and earlier allows remote attackers to conduct a man-in-the-middle attack via a malicous wireless LAN access point. | 5.4 |
| 2019-07-05 | CVE-2019-5981 | Unspecified vulnerability in Sony Vaio Update 7.3.0.03150 Improper authorization vulnerability in VAIO Update 7.3.0.03150 and earlier allows an attackers to execute arbitrary executable file with administrative privilege via unspecified vectors. network sony | 6.8 |
| 2019-06-19 | CVE-2018-16595 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Sony products The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices has a Buffer Overflow. | 3.3 |
| 2019-06-19 | CVE-2018-16594 | Path Traversal vulnerability in Sony products The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices allows Directory Traversal. | 4.8 |
| 2019-06-19 | CVE-2018-16593 | OS Command Injection vulnerability in Sony products The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices allows Shell Metacharacter Injection. | 8.3 |
| 2019-06-06 | CVE-2019-12762 | Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch. | 4.2 |
| 2019-05-14 | CVE-2019-11336 | Information Exposure Through Log Files vulnerability in Sony Photo Sharing Plus Sony Bravia Smart TV devices allow remote attackers to retrieve the static Wi-Fi password (used when the TV is acting as an access point) by using the Photo Sharing Plus application to execute a backdoor API command, a different vulnerability than CVE-2019-10886. | 4.3 |
| 2019-04-25 | CVE-2018-14983 | Improper Input Validation vulnerability in Sony Xperia L1 Firmware The Sony Xperia L1 Android device with a build fingerprint of Sony/G3313/G3313:7.0/43.0.A.6.49/2867558199:user/release-keys contains the android framework (i.e., system_server) with a package name of android (versionCode=24, versionName=7.0) that has been modified by Sony or another entity in the supply chain. | 2.1 |