The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices allows Shell Metacharacter Injection.
No CVSS v3.1
Attack Vector Adjacent Network
Attack Complexity Low
Privileges Required None
Scope Unchanged
Confidentiality Impact High
Integrity Impact High
Availability Impact High
User Interaction None
Access Vector Adjacent Network
Access Complexity Low
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
AV:A/AC:L/Au:N/C:C/I:C/A:C
Vendors | Products |
---|---|
Sony |
|
Configuration 1 [-]
AND |
|
Configuration 2 [-]
AND |
|
Configuration 3 [-]
AND |
|
Configuration 4 [-]
AND |
|
Configuration 5 [-]
AND |
|
Configuration 6 [-]
AND |
|
Configuration 7 [-]
AND |
|
Configuration 8 [-]
AND |
|
References
Link | Resource |
---|---|
https://fortiguard.com/zeroday/FG-VD-18-036 | Third Party Advisory |
https://www.sony.co.uk/electronics/support/articles/00201041 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-06-19T18:18:21
Updated: 2019-06-19T18:18:21
Reserved: 2018-09-06T00:00:00
Link: CVE-2018-16593
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-06-19T19:15:10.343
Modified: 2020-08-24T17:37:01.140
Link: CVE-2018-16593
JSON object: View
Redhat Information
No data.
CWE