Vulnerabilities in Sony Corporation

18 results

CVE-2017-2276—Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary commands via unspecified vectors.EPSS 1.9%CVE-2017-2275—WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors.EPSS 1.6%CVE-2018-0656—Untrusted search path vulnerability in The installer of Digital Paper App version 1.4.0.16050 and earlier allows an attacker to gain privileEPSS 1.3%CVE-2017-2287—Untrusted search path vulnerability in NFC Port Software remover Ver.1.3.0.1 and earlier allows an attacker to gain privileges via a Trojan EPSS 1.1%CVE-2017-2286—Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier (for RC-S310, RC-S320, RC-S330, RC-S370, RC-S380, RC-S3EPSS 1.1%CVE-2017-2277—WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage coEPSS 1.1%CVE-2018-0600—Untrusted search path vulnerability in the installer of PlayMemories Home for Windows ver.5.5.01 and earlier allows an attacker to gain privEPSS 1.0%CVE-2019-5981—Improper authorization vulnerability in VAIO Update 7.3.0.03150 and earlier allows an attackers to execute arbitrary executable file with adEPSS 0.9%CVE-2016-7830—Sony PCS-XG100, PCS-XG100S, PCS-XG100C, PCS-XG77, PCS-XG77S, PCS-XG77C devices with firmware versions prior to Ver.1.51 and PCS-XC1 devices EPSS 0.7%CVE-2020-5589—SONY Wireless Headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N and WI-SPEPSS 0.6%CVE-2019-5982—Improper download file verification vulnerability in VAIO Update 7.3.0.03150 and earlier allows remote attackers to conduct a man-in-the-midEPSS 0.4%CVE-2021-20793—Untrusted search path vulnerability in the installer of Sony Audio USB Driver V1.10 and prior and the installer of HAP Music Transfer Ver.1.EPSS 0.3%CVE-2022-41796HIGHUntrusted search path vulnerability in the installer of Content Transfer (for Windows) Ver.1.3 and prior allows an attacker to gain privilegEPSS 0.2%CVE-2025-64772HIGHThe installer of INZONE Hub 1.0.10.3 to 1.0.17.0 contains an issue with the DLL search path, which may lead to insecurely loading Dynamic LiEPSS 0.2%CVE-2025-64730MEDIUMCross-site scripting vulnerability exists in SNC-CX600W all versions. If this vulnerability is exploited, an arbitrary script may be executeEPSS 0.2%CVE-2025-62225HIGHOptical Disc Archive Software provided by Sony Corporation registers a Windows service with an unquoted file path. A user with the write perEPSS 0.1%CVE-2025-62497LOWCross-site request forgery vulnerability exists in SNC-CX600W versions prior to Ver.2.8.0. If a user accesses a specially crafted webpage whEPSS 0.1%CVE-2026-50255MEDIUMIncorrect default permissions issue exists in Optical Disc Archive Software for Windows 5.5.3 and earlier. If this vulnerability is exploiteEPSS 0.1%