CVE-2018-16594 - OpenCVE

The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices allows Directory Traversal.

No CVSS v3.1

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:A/AC:L/Au:N/C:P/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Sony	Kdl-32we615 Kd-49xe7096 Xf70 Firmware Kdl-49wd758 Kdl-49we663 Kd-49xe7005 Kd-49xe7077 Kd-55xe7093 Kdl-49we753 Kd-43xe7004 Kdl-43we755 Kdl-32we613 Kdl-49we660 Kdl-32wd755 Kdl-32wd759 Kdl-49wd757 Kdl-40r555c Kdl-40r553c Kd-65xe7003 Kdl-48r553c Xf70 Kdl-49wd753 Kdl-40wd655 Kdl-43wd751 Kd-55xe7000 Kdl-49wd755 Kdl-43wd755 Kdl-43wd758 Kd-49xe7004 Kdl-32wd750 Kd-65xe7096 Kdl-40we660 Kdl-49wd754 Kd-65xe7002 Kdl-32r500c Kdl-32wd758 Kdl-49wd759 Wf6 Firmware Kdl-43wd757 Kdl-43wd754 Kd-55xe7003 Xe70 Firmware Kd-65xe7004 Kdl-32wd757 Kd-43xe7096 Kdl-43we754 Kd-55xe7004 Kdl-43wd756 Kd-43xe7077 Kdl-48wd650 Kdl-49we755 Kdl-40r550c Kdl-40wd650 Kd-49xe7003 Kdl-43wd752 Kd-55xe7002 Kdl-40we663 Kd-65xe7093 Kdl-48r550c Kdl-49we665 Kd-43xe7003 Kdl-32r503c Wd75 Firmware Kdl-32wd753 Kd-43xe7005 Kd-43xe7000 Kdl-40we665 R5c Firmware Kd-55xe7077 Kd-55xe7096 Kdl-49we754 Kdl-32wd751 Kd-49xe7073 Kdl-32wd754 We6 Firmware We75 Firmware Kd-43xe7093 Wf6 Kdl-32we610 Kd-49xe7002 Kdl-49wd751 Kdl-32r505c Kd-55xe7073 Kdl-43wd753 Kdl-32wd752 Kdl-49wd756 Kdl-48wd653 Kdl-43wd750 Kdl-32wd756 Kd-65xe7005 Kdl-48wd655 Kdl-43we750 Kdl-43wd759 Kdl-40wd653 Kdl-43we753 Kd-55xe7005 Kdl-48r555c Kdl-49wd752 Kd-43xe7073 Kdl-49we750 Kd-43xe7002 Kdl-49wd750 Kd-49xe7000 Kd-49xe7093 Wd65 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:sony:r5c_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:sony:kdl-32r500c:-:::::::*
	cpe:2.3:h:sony:kdl-32r503c:-:::::::*
	cpe:2.3:h:sony:kdl-32r505c:-:::::::*
	cpe:2.3:h:sony:kdl-40r550c:-:::::::*
	cpe:2.3:h:sony:kdl-40r553c:-:::::::*
	cpe:2.3:h:sony:kdl-40r555c:-:::::::*
	cpe:2.3:h:sony:kdl-48r550c:-:::::::*
	cpe:2.3:h:sony:kdl-48r553c:-:::::::*
	cpe:2.3:h:sony:kdl-48r555c:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:sony:wd75_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:sony:kdl-32wd750:-:::::::*
	cpe:2.3:h:sony:kdl-32wd751:-:::::::*
	cpe:2.3:h:sony:kdl-32wd752:-:::::::*
	cpe:2.3:h:sony:kdl-32wd753:-:::::::*
	cpe:2.3:h:sony:kdl-32wd754:-:::::::*
	cpe:2.3:h:sony:kdl-32wd755:-:::::::*
	cpe:2.3:h:sony:kdl-32wd756:-:::::::*
	cpe:2.3:h:sony:kdl-32wd757:-:::::::*
	cpe:2.3:h:sony:kdl-32wd758:-:::::::*
	cpe:2.3:h:sony:kdl-32wd759:-:::::::*
	cpe:2.3:h:sony:kdl-43wd750:-:::::::*
	cpe:2.3:h:sony:kdl-43wd751:-:::::::*
	cpe:2.3:h:sony:kdl-43wd752:-:::::::*
	cpe:2.3:h:sony:kdl-43wd753:-:::::::*
	cpe:2.3:h:sony:kdl-43wd754:-:::::::*
	cpe:2.3:h:sony:kdl-43wd755:-:::::::*
	cpe:2.3:h:sony:kdl-43wd756:-:::::::*
	cpe:2.3:h:sony:kdl-43wd757:-:::::::*
	cpe:2.3:h:sony:kdl-43wd758:-:::::::*
	cpe:2.3:h:sony:kdl-43wd759:-:::::::*
	cpe:2.3:h:sony:kdl-49wd750:-:::::::*
	cpe:2.3:h:sony:kdl-49wd751:-:::::::*
	cpe:2.3:h:sony:kdl-49wd752:-:::::::*
	cpe:2.3:h:sony:kdl-49wd753:-:::::::*
	cpe:2.3:h:sony:kdl-49wd754:-:::::::*
	cpe:2.3:h:sony:kdl-49wd755:-:::::::*
	cpe:2.3:h:sony:kdl-49wd756:-:::::::*
	cpe:2.3:h:sony:kdl-49wd757:-:::::::*
	cpe:2.3:h:sony:kdl-49wd758:-:::::::*
	cpe:2.3:h:sony:kdl-49wd759:-:::::::*

Configuration 3 [-]

AND

cpe:2.3:o:sony:wd65_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:sony:kdl-40wd650:-:::::::*
	cpe:2.3:h:sony:kdl-40wd653:-:::::::*
	cpe:2.3:h:sony:kdl-40wd655:-:::::::*
	cpe:2.3:h:sony:kdl-48wd650:-:::::::*
	cpe:2.3:h:sony:kdl-48wd653:-:::::::*
	cpe:2.3:h:sony:kdl-48wd655:-:::::::*

Configuration 4 [-]

AND

cpe:2.3:o:sony:xe70_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:sony:kd-43xe7000:-:::::::*
	cpe:2.3:h:sony:kd-43xe7002:-:::::::*
	cpe:2.3:h:sony:kd-43xe7003:-:::::::*
	cpe:2.3:h:sony:kd-43xe7004:-:::::::*
	cpe:2.3:h:sony:kd-43xe7005:-:::::::*
	cpe:2.3:h:sony:kd-43xe7073:-:::::::*
	cpe:2.3:h:sony:kd-43xe7077:-:::::::*
	cpe:2.3:h:sony:kd-43xe7093:-:::::::*
	cpe:2.3:h:sony:kd-43xe7096:-:::::::*
	cpe:2.3:h:sony:kd-49xe7000:-:::::::*
	cpe:2.3:h:sony:kd-49xe7002:-:::::::*
	cpe:2.3:h:sony:kd-49xe7003:-:::::::*
	cpe:2.3:h:sony:kd-49xe7004:-:::::::*
	cpe:2.3:h:sony:kd-49xe7005:-:::::::*
	cpe:2.3:h:sony:kd-49xe7073:-:::::::*
	cpe:2.3:h:sony:kd-49xe7077:-:::::::*
	cpe:2.3:h:sony:kd-49xe7093:-:::::::*
	cpe:2.3:h:sony:kd-49xe7096:-:::::::*
	cpe:2.3:h:sony:kd-55xe7000:-:::::::*
	cpe:2.3:h:sony:kd-55xe7002:-:::::::*
	cpe:2.3:h:sony:kd-55xe7003:-:::::::*
	cpe:2.3:h:sony:kd-55xe7004:-:::::::*
	cpe:2.3:h:sony:kd-55xe7005:-:::::::*
	cpe:2.3:h:sony:kd-55xe7073:-:::::::*
	cpe:2.3:h:sony:kd-55xe7077:-:::::::*
	cpe:2.3:h:sony:kd-55xe7093:-:::::::*
	cpe:2.3:h:sony:kd-55xe7096:-:::::::*
	cpe:2.3:h:sony:kd-65xe7002:-:::::::*
	cpe:2.3:h:sony:kd-65xe7003:-:::::::*
	cpe:2.3:h:sony:kd-65xe7004:-:::::::*
	cpe:2.3:h:sony:kd-65xe7005:-:::::::*
	cpe:2.3:h:sony:kd-65xe7093:-:::::::*
	cpe:2.3:h:sony:kd-65xe7096:-:::::::*

Configuration 5 [-]

AND

cpe:2.3:o:sony:xf70_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sony:xf70:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:sony:we75_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:sony:kdl-43we750:-:::::::*
	cpe:2.3:h:sony:kdl-43we753:-:::::::*
	cpe:2.3:h:sony:kdl-43we754:-:::::::*
	cpe:2.3:h:sony:kdl-43we755:-:::::::*
	cpe:2.3:h:sony:kdl-49we750:-:::::::*
	cpe:2.3:h:sony:kdl-49we753:-:::::::*
	cpe:2.3:h:sony:kdl-49we754:-:::::::*
	cpe:2.3:h:sony:kdl-49we755:-:::::::*

Configuration 7 [-]

AND

cpe:2.3:o:sony:we6_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:sony:kdl-32we610:-:::::::*
	cpe:2.3:h:sony:kdl-32we613:-:::::::*
	cpe:2.3:h:sony:kdl-32we615:-:::::::*
	cpe:2.3:h:sony:kdl-40we660:-:::::::*
	cpe:2.3:h:sony:kdl-40we663:-:::::::*
	cpe:2.3:h:sony:kdl-40we665:-:::::::*
	cpe:2.3:h:sony:kdl-49we660:-:::::::*
	cpe:2.3:h:sony:kdl-49we663:-:::::::*
	cpe:2.3:h:sony:kdl-49we665:-:::::::*

Configuration 8 [-]

AND

cpe:2.3:o:sony:wf6_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sony:wf6:-:*:*:*:*:*:*:*

References

Link	Resource
https://fortiguard.com/zeroday/FG-VD-18-036	Third Party Advisory
https://www.sony.co.uk/electronics/support/articles/00201041	Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-19T18:13:28

Updated: 2019-06-19T18:13:28

Reserved: 2018-09-06T00:00:00

Link: CVE-2018-16594

JSON object: View

NVD Information

Status : Analyzed

Published: 2019-06-19T19:15:10.423

Modified: 2019-06-24T17:23:00.960

Link: CVE-2018-16594

JSON object: View

Redhat Information

No data.

CWE

CWE-22

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:r5c_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "76DD56D9-850F-4D73-B1DF-EA707C034FDB", "versionEndExcluding": "8.590", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:kdl-32r500c:-:*:*:*:*:*:*:*", "matchCriteriaId": "70ED3061-0F82-4684-AC9D-C98236E21FB7", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32r503c:-:*:*:*:*:*:*:*", "matchCriteriaId": "CA168A42-5000-4234-8379-3A751EA9196C", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32r505c:-:*:*:*:*:*:*:*", "matchCriteriaId": "18E0ADCE-A85F-48F2-958A-75AB3CBBCE94", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40r550c:-:*:*:*:*:*:*:*", "matchCriteriaId": "F4A24133-FF95-4DA5-932D-50C9E29B56E4", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40r553c:-:*:*:*:*:*:*:*", "matchCriteriaId": "ACEA1876-1B59-4D84-974B-0AEAFA538AA5", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40r555c:-:*:*:*:*:*:*:*", "matchCriteriaId": "77221DD0-067F-4024-8676-4EEC8B4F1133", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-48r550c:-:*:*:*:*:*:*:*", "matchCriteriaId": "5C3EFE88-37BF-4320-9D52-F2CD3408670E", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-48r553c:-:*:*:*:*:*:*:*", "matchCriteriaId": "9DB98BCA-7596-4262-A399-E20BC0323D61", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-48r555c:-:*:*:*:*:*:*:*", "matchCriteriaId": "81CDC52B-2C9E-4E1C-876E-8DD9A6D3CE3B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:wd75_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CB049FC0-4B7F-41B4-A70F-BD1B670D4DD7", "versionEndExcluding": "8.216", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:kdl-32wd750:-:*:*:*:*:*:*:*", "matchCriteriaId": "64D3E45A-8B76-4AA7-A3D6-B72B9BB87689", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd751:-:*:*:*:*:*:*:*", "matchCriteriaId": "55C72BF9-D87B-445E-B351-45AD00114E94", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd752:-:*:*:*:*:*:*:*", "matchCriteriaId": "FAEBF8D2-4934-4AD6-8E67-F2EE03D7718A", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd753:-:*:*:*:*:*:*:*", "matchCriteriaId": "DCDDA8FA-9F40-4179-8765-BD5DB35CBD3B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd754:-:*:*:*:*:*:*:*", "matchCriteriaId": "B047BFD0-D19B-449A-BA1C-E1F1A75B90E3", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd755:-:*:*:*:*:*:*:*", "matchCriteriaId": "DFC06C48-3E0A-4361-BC3C-35F014CF2F33", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd756:-:*:*:*:*:*:*:*", "matchCriteriaId": "C94DABCA-3E15-4AA2-9557-F97449C240A4", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd757:-:*:*:*:*:*:*:*", "matchCriteriaId": "831CFFC3-A123-4A6D-9CC6-46B20CE854C7", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd758:-:*:*:*:*:*:*:*", "matchCriteriaId": "D30CE626-EE48-4CAD-B761-7BF302941E9E", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32wd759:-:*:*:*:*:*:*:*", "matchCriteriaId": "EBC2168F-E9CD-439F-85E6-9B5B4B9F6035", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd750:-:*:*:*:*:*:*:*", "matchCriteriaId": "DC040E06-3476-4346-A6D3-F8FF18FFD09D", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd751:-:*:*:*:*:*:*:*", "matchCriteriaId": "5CB41412-2C56-4A82-83A5-12051CC1CF02", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd752:-:*:*:*:*:*:*:*", "matchCriteriaId": "1BF3F001-4EE1-4364-A7EB-D9B079096F62", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd753:-:*:*:*:*:*:*:*", "matchCriteriaId": "29308ABB-55CD-4747-ABE3-A7CC5D2471A3", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd754:-:*:*:*:*:*:*:*", "matchCriteriaId": "F0471131-8123-4161-837C-779708743390", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd755:-:*:*:*:*:*:*:*", "matchCriteriaId": "C3872E29-A40F-4319-8683-9C863ECF1F35", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd756:-:*:*:*:*:*:*:*", "matchCriteriaId": "2008B1F2-ECD6-4ECF-840D-EA1141596569", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd757:-:*:*:*:*:*:*:*", "matchCriteriaId": "1CC6BC23-9BFF-407D-9AD0-1B9CE1E01660", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd758:-:*:*:*:*:*:*:*", "matchCriteriaId": "007DDF48-D349-42EE-A40E-F20C8767E23D", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43wd759:-:*:*:*:*:*:*:*", "matchCriteriaId": "B26845B9-C2F6-476D-BEE8-B8E9CAD6E50F", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd750:-:*:*:*:*:*:*:*", "matchCriteriaId": "CC08908E-AF1F-43E0-8378-E20F2ECFD330", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd751:-:*:*:*:*:*:*:*", "matchCriteriaId": "E3B6921C-D7CE-4DB3-BC7F-6017101D0438", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd752:-:*:*:*:*:*:*:*", "matchCriteriaId": "0DF11611-9F28-4579-9C1B-68ED2CAE250C", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd753:-:*:*:*:*:*:*:*", "matchCriteriaId": "0CC2E502-91CF-4C2F-9217-12048FA48B17", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd754:-:*:*:*:*:*:*:*", "matchCriteriaId": "3E916844-B415-450E-9EF1-0AECE938D897", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd755:-:*:*:*:*:*:*:*", "matchCriteriaId": "5FC20D08-E5E7-49D0-92E4-863B33D80DEA", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd756:-:*:*:*:*:*:*:*", "matchCriteriaId": "F18B96AA-7B06-4EDD-B137-004264841087", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd757:-:*:*:*:*:*:*:*", "matchCriteriaId": "57A0BD61-E11A-443A-9583-31A0893F207A", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd758:-:*:*:*:*:*:*:*", "matchCriteriaId": "590B2BEF-56BC-46C3-9D3A-B7A9CEE9883A", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49wd759:-:*:*:*:*:*:*:*", "matchCriteriaId": "C96D5D3E-EA65-477F-A179-E4B9A0E2C6A2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:wd65_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A27C3134-F6E3-4E86-82EA-55AE56FF4593", "versionEndExcluding": "8.216", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:kdl-40wd650:-:*:*:*:*:*:*:*", "matchCriteriaId": "732F4401-1E6C-4F6E-8881-5C98362A156D", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40wd653:-:*:*:*:*:*:*:*", "matchCriteriaId": "4F1095FF-A06B-4E49-97D1-57247875C5E1", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40wd655:-:*:*:*:*:*:*:*", "matchCriteriaId": "8301507A-6705-4331-A870-A0A55F31335A", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-48wd650:-:*:*:*:*:*:*:*", "matchCriteriaId": "20DBE8C5-42E4-44A8-8067-156CCE19B676", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-48wd653:-:*:*:*:*:*:*:*", "matchCriteriaId": "AB2137CF-582A-453C-AA77-E22DD2150C3E", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-48wd655:-:*:*:*:*:*:*:*", "matchCriteriaId": "C8C34F08-DB4E-4F54-BF6E-E46276F32D39", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:xe70_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1D97DA89-B535-4806-A5F1-F630155E79C0", "versionEndExcluding": "8.764", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:kd-43xe7000:-:*:*:*:*:*:*:*", "matchCriteriaId": "1A2D07B1-B6BC-41E2-9BD0-1A52755EF9C5", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7002:-:*:*:*:*:*:*:*", "matchCriteriaId": "DC3B457D-EEE9-40F1-A81C-D33C9D912D3B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7003:-:*:*:*:*:*:*:*", "matchCriteriaId": "0CCBD307-861E-41D6-AAFF-CF1C6A1FD83B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7004:-:*:*:*:*:*:*:*", "matchCriteriaId": "8152A6F4-2AFD-4A8D-BE35-3E960FE07013", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7005:-:*:*:*:*:*:*:*", "matchCriteriaId": "A21F904B-2777-4F0D-BA26-9E5C021C81DC", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7073:-:*:*:*:*:*:*:*", "matchCriteriaId": "1EB3E451-83A1-4F8D-948A-FA47345F3F39", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7077:-:*:*:*:*:*:*:*", "matchCriteriaId": "18A64DBA-4140-410E-AD09-4C8F45ED1549", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7093:-:*:*:*:*:*:*:*", "matchCriteriaId": "F4C739D3-B079-4FF0-A09D-1696F4BB904A", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-43xe7096:-:*:*:*:*:*:*:*", "matchCriteriaId": "DB3EE0A6-86CD-4AB3-8329-66EF2183C9D6", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7000:-:*:*:*:*:*:*:*", "matchCriteriaId": "C7A467F6-3F40-4959-9645-A0260454EB3C", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7002:-:*:*:*:*:*:*:*", "matchCriteriaId": "906E34DA-5A46-4B36-ABE2-0B29338124A9", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7003:-:*:*:*:*:*:*:*", "matchCriteriaId": "31981A3E-0199-44E8-A016-56AAE4AA6041", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7004:-:*:*:*:*:*:*:*", "matchCriteriaId": "1433F14F-2081-4ADF-95AB-7490B03AFDB2", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7005:-:*:*:*:*:*:*:*", "matchCriteriaId": "51215721-F849-4A94-BF9D-64804819B30D", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7073:-:*:*:*:*:*:*:*", "matchCriteriaId": "477E3EFF-D948-45D9-8C6E-5FB3839453FB", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7077:-:*:*:*:*:*:*:*", "matchCriteriaId": "DC6B97A7-99F1-4B6D-9B2B-B7323E6C18FC", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7093:-:*:*:*:*:*:*:*", "matchCriteriaId": "A4AB165E-8D83-48FF-AB06-29CE9C4FC6C7", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-49xe7096:-:*:*:*:*:*:*:*", "matchCriteriaId": "1FDA34E9-5A05-4F22-B086-9DCB9C34C571", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7000:-:*:*:*:*:*:*:*", "matchCriteriaId": "FDD238BE-878F-469D-95B1-3114AB79F1C3", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7002:-:*:*:*:*:*:*:*", "matchCriteriaId": "D7ECD186-12CB-45C8-8836-80EE53F35CCC", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7003:-:*:*:*:*:*:*:*", "matchCriteriaId": "6C758524-2842-4D5A-A4B6-1C9EAA6AC157", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7004:-:*:*:*:*:*:*:*", "matchCriteriaId": "6BA53F7D-5051-4D44-8DF9-3CC85EE862BF", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7005:-:*:*:*:*:*:*:*", "matchCriteriaId": "9DFBEB24-47AF-4E10-A7A0-802C7F927031", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7073:-:*:*:*:*:*:*:*", "matchCriteriaId": "6CE8E88C-BCFA-4F79-BF26-606C699A4F40", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7077:-:*:*:*:*:*:*:*", "matchCriteriaId": "7EA1ECE2-2FC9-4465-9FCD-F648C1038790", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7093:-:*:*:*:*:*:*:*", "matchCriteriaId": "1F4D03D5-CE40-44C0-BF00-685CD112C733", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-55xe7096:-:*:*:*:*:*:*:*", "matchCriteriaId": "D7EA1687-DDA0-4530-9A7C-5276B68E089D", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-65xe7002:-:*:*:*:*:*:*:*", "matchCriteriaId": "E81315B2-1C45-4416-BA37-FBD07DFD17B7", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-65xe7003:-:*:*:*:*:*:*:*", "matchCriteriaId": "FDAB3401-9BCF-4492-AEF4-DB01CAF4A506", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-65xe7004:-:*:*:*:*:*:*:*", "matchCriteriaId": "BBC79E11-1004-48B2-801B-608B007EA3B9", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-65xe7005:-:*:*:*:*:*:*:*", "matchCriteriaId": "096D2E8F-15D4-4D1B-8D0A-5AD9E0A04437", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-65xe7093:-:*:*:*:*:*:*:*", "matchCriteriaId": "FD208BD2-BE45-4420-A250-45A12013B0B5", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kd-65xe7096:-:*:*:*:*:*:*:*", "matchCriteriaId": "8859795F-C697-4EC2-920D-99E442154DDF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:xf70_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "921207D1-758A-4C48-A537-195740B90ABF", "versionEndExcluding": "8.764", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:xf70:-:*:*:*:*:*:*:*", "matchCriteriaId": "C1558C84-D1A6-40B6-B82C-A8B5BE1942C3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:we75_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4832F1D0-BA48-48CE-B991-F533E2B948F0", "versionEndExcluding": "8.464", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:kdl-43we750:-:*:*:*:*:*:*:*", "matchCriteriaId": "02A0EB57-1516-431D-9F86-3AEAA8CFEB67", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43we753:-:*:*:*:*:*:*:*", "matchCriteriaId": "C312677C-6377-4D6A-8146-E3C80D49233B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43we754:-:*:*:*:*:*:*:*", "matchCriteriaId": "D4A4FEEF-AAC9-46F8-9EE4-D2CF25E8231B", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-43we755:-:*:*:*:*:*:*:*", "matchCriteriaId": "3F97C01E-6D65-406A-B3C4-3A6001E08C5D", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49we750:-:*:*:*:*:*:*:*", "matchCriteriaId": "CF3A2C04-5DFC-49C6-86E5-C68C3D2056D0", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49we753:-:*:*:*:*:*:*:*", "matchCriteriaId": "F837C413-E6CD-4CEE-8883-A5F695BC6DBC", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49we754:-:*:*:*:*:*:*:*", "matchCriteriaId": "3A268FD9-5ED5-4140-8EB3-BB38EA74C8F2", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49we755:-:*:*:*:*:*:*:*", "matchCriteriaId": "07C72B6A-B37E-4ED5-AE68-729E470A881E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:we6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B6642E3D-2893-4298-A5C7-33AC6A84CBF7", "versionEndExcluding": "8.464", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:kdl-32we610:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7081460-C658-45AA-A2B1-53BF1594F531", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32we613:-:*:*:*:*:*:*:*", "matchCriteriaId": "CFD3E01E-596D-4FEF-B1AE-F3FB46449ACD", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-32we615:-:*:*:*:*:*:*:*", "matchCriteriaId": "4EA42AF5-B237-47A7-AD2C-2BA750DE6279", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40we660:-:*:*:*:*:*:*:*", "matchCriteriaId": "A5241412-27DF-4F50-ADB9-962DD59CC3B1", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40we663:-:*:*:*:*:*:*:*", "matchCriteriaId": "8E732B18-753F-481C-881C-A3F69B9DA807", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-40we665:-:*:*:*:*:*:*:*", "matchCriteriaId": "CC218151-96BC-4222-80D0-22B9DE3749D9", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49we660:-:*:*:*:*:*:*:*", "matchCriteriaId": "409AAA6A-A594-445B-A30A-D25FE5B182BF", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49we663:-:*:*:*:*:*:*:*", "matchCriteriaId": "3C123B87-3191-493F-9282-1026E55506D1", "vulnerable": false}, {"criteria": "cpe:2.3:h:sony:kdl-49we665:-:*:*:*:*:*:*:*", "matchCriteriaId": "14F04AFA-29C2-43C3-9CD2-3A8A329FECAB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sony:wf6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DD88D1E1-30F7-436A-B6AD-F39019C14CC3", "versionEndExcluding": "8.464", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sony:wf6:-:*:*:*:*:*:*:*", "matchCriteriaId": "3154C95C-E341-4632-BB1B-9E44D5C82CD1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices allows Directory Traversal."}, {"lang": "es", "value": "El componente Photo Sharing Plus en Sony Bravia TV a trav\u00e9s de 8.587 dispositivos permite el recorrido de directorios."}], "id": "CVE-2018-16594", "lastModified": "2019-06-24T17:23:00.960", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-06-19T19:15:10.423", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://fortiguard.com/zeroday/FG-VD-18-036"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.sony.co.uk/electronics/support/articles/00201041"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}