Lucene search
K

7 matches found

OSV
OSV
added 2026/01/06 4:15 p.m.7 views

CVE-2020-36923

Sony BRAVIA Digital Signage 1.7.8 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization controls. Attackers can access hidden system resources like '//content-creation' by manipulating client-side access restrictions...

6.9CVSS5.8AI score0.00924EPSS
Exploits2References9
CVE
CVE
added 2026/01/06 3:52 p.m.14 views

CVE-2020-36924

Sony BRAVIA Digital Signage 1.7.8 is affected by a remote file inclusion vulnerability in the content material URL parameter. The issue allows attackers to inject arbitrary client-side scripts, potentially hijacking user sessions, performing cross-site scripting, and altering display content by m...

6.1CVSS6.1AI score0.0048EPSS
Exploits2References9Affected Software1
CVE
CVE
added 2026/01/06 3:52 p.m.11 views

CVE-2020-36923

Affected product: Sony BRAVIA Digital Signage 1.7.8. Vulnerability: insecure direct object reference (IDOR) that bypasses authorization controls to access hidden system resources (e.g., '/#/content-creation') by manipulating client-side access restrictions. Root cause: insufficient authorization ...

9.8CVSS6.5AI score0.00924EPSS
Exploits2References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.5 views

PT-2026-1456

Sony BRAVIA Digital Signage 1.7.8 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization controls. Attackers can access hidden system resources like '//content-creation' by manipulating client-side access restrictions...

9.8CVSS6.9AI score0.00924EPSS
Exploits2References10
Packet Storm
Packet Storm
added 2020/12/03 12:0 a.m.526 views

Sony BRAVIA Digital Signage 1.7.8 Insecure Direct Object Reference

Sony BRAVIA Digital Signage 1.7.8 Client-Side Protection Bypass / IDOR Vendor: Sony Electronics Inc. Product web page: https://pro-bravia.sony.net https://pro-bravia.sony.net/resources/software/bravia-signage/ https://pro.sony/ueUS/products/display-software Affected version: =1.7.8 Summary: Sony'...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/12/03 12:0 a.m.579 views

Sony BRAVIA Digital Signage 1.7.8 - System API Information Disclosure

Exploit Title: Sony BRAVIA Digital Signage 1.7.8 - System API Information Disclosure Date: 20.09.2020 Exploit Author: LiquidWorm Vendor Homepage: https://pro-bravia.sony.net Version: 1.7.8 Sony BRAVIA Digital Signage 1.7.8 System API Information Disclosure Vendor: Sony Electronics Inc. Product we...

7AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2020/12/02 12:0 a.m.144 views

Sony BRAVIA Digital Signage 1.7.8 Unauthenticated Remote File Inclusion

Summary Sony's BRAVIA Signage is an application to deliver video and still images to Pro BRAVIAs and manage the information via a network. Features include management of displays, power schedule management, content playlists, scheduled delivery management, content interrupt, and more. This...

6.1CVSS5.9AI score0.0048EPSS
Exploits2
Rows per page
Query Builder