Filtered by vendor Sony
Subscriptions
Filtered by product Bravia Tv
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-36924 | 1 Sony | 2 Bravia, Bravia Tv | 2026-01-08 | 7.5 High |
| Sony BRAVIA Digital Signage 1.7.8 contains a remote file inclusion vulnerability that allows attackers to inject arbitrary client-side scripts through the content material URL parameter. Attackers can exploit this vulnerability to hijack user sessions, execute cross-site scripting code, and modify display content by manipulating the input material type. | ||||
| CVE-2020-36922 | 1 Sony | 2 Bravia, Bravia Tv | 2026-01-08 | 7.5 High |
| Sony BRAVIA Digital Signage 1.7.8 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive system details through API endpoints. Attackers can retrieve network interface information, server configurations, and system metadata by sending requests to the exposed system API. | ||||
| CVE-2020-36923 | 1 Sony | 2 Bravia, Bravia Tv | 2026-01-08 | 9.8 Critical |
| Sony BRAVIA Digital Signage 1.7.8 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization controls. Attackers can access hidden system resources like '/#/content-creation' by manipulating client-side access restrictions. | ||||
| CVE-2012-2210 | 1 Sony | 1 Bravia Tv | 2025-04-11 | N/A |
| The Sony Bravia TV KDL-32CX525 allows remote attackers to cause a denial of service (configuration outage or device crash) via a flood of TCP SYN packets, as demonstrated by hping, a related issue to CVE-1999-0116. | ||||
Page 1 of 1.