PT-2019-12247 · Sony · Sony Bravia Smart Tv

Published

2019-04-24

Updated

2019-05-21

CVE-2019-11336

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Sony Bravia Smart TV devices (affected versions not specified)

Description The issue allows remote attackers to retrieve the static Wi-Fi password used when the TV is acting as an access point. This is achieved by using the Photo Sharing Plus application to execute a backdoor API command.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2019-11336

Affected Products

Sony Bravia Smart Tv

PT-2019-12247 · Sony · Sony Bravia Smart Tv

CVE-2019-11336

Weakness Enumeration

Related Identifiers

Affected Products

References · 8