Vulnerabilities > Sony > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-24 | CVE-2022-41796 | Uncontrolled Search Path Element vulnerability in Sony Content Transfer 1.3 Untrusted search path vulnerability in the installer of Content Transfer (for Windows) Ver.1.3 and prior allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2022-05-20 | CVE-2022-27094 | Unquoted Search Path or Element vulnerability in Sony Playmemories Home 6.0 Sony PlayMemories Home v6.0 contains an unquoted service path which allows attackers to escalate privileges to the system level. | 7.2 |
| 2020-06-09 | CVE-2020-5589 | Missing Authentication for Critical Function vulnerability in Sony products SONY Wireless Headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N and WI-SP600N with firmware versions prior to 4.5.2 have vulnerability that someone within the Bluetooth range can make the Bluetooth pairing and operate such as changing volume of the product. | 8.3 |
| 2019-07-09 | CVE-2019-11890 | Resource Exhaustion vulnerability in Sony Bravia Firmware Sony Bravia Smart TV devices allow remote attackers to cause a denial of service (device hang or reboot) via a SYN flood attack over a wired or Wi-Fi LAN. | 7.8 |
| 2019-07-09 | CVE-2019-11889 | Unspecified vulnerability in Sony Bravia Firmware Sony BRAVIA Smart TV devices allow remote attackers to cause a denial of service (device hang) via a crafted web page over HbbTV. | 7.8 |
| 2019-06-19 | CVE-2018-16593 | OS Command Injection vulnerability in Sony products The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices allows Shell Metacharacter Injection. | 8.3 |
| 2019-04-04 | CVE-2019-10844 | Improper Input Validation vulnerability in Sony Neural Network Libraries nbla/logger.cpp in libnnabla.a in Sony Neural Network Libraries (aka nnabla) through v1.0.14 relies on the HOME environment variable, which might be untrusted. | 7.5 |
| 2018-08-14 | CVE-2018-3938 | Out-of-bounds Write vulnerability in Sony products An exploitable stack-based buffer overflow vulnerability exists in the 802dot1xclientcert.cgi functionality of Sony IPELA E Series Camera G5 firmware 1.87.00. | 7.5 |
| 2017-07-22 | CVE-2017-2277 | Unspecified vulnerability in Sony Wg-C10 Firmware WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors. | 7.5 |
| 2012-04-11 | CVE-2012-2210 | Resource Management Errors vulnerability in Sony Bravia TV Kdl32Cx525 The Sony Bravia TV KDL-32CX525 allows remote attackers to cause a denial of service (configuration outage or device crash) via a flood of TCP SYN packets, as demonstrated by hping, a related issue to CVE-1999-0116. | 7.8 |