Lucene search
+L

1124 matches found

Vulnrichment
Vulnrichment
added 2026/04/17 11:27 p.m.4 views

CVE-2026-40336 libgphoto2 has memory leak in ptp_unpack_Sony_DPD() secondary enumeration list in ptp-pack.c

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have a memory leak in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c lines 884–885. When processing a secondary enumeration list introduced in 2024+ Sony cameras, the function overwrites dpd-FORM.Enum.SupportedVal...

2.4CVSS5.7AI score0.00181EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/17 11:27 p.m.31 views

CVE-2026-40336 libgphoto2 has memory leak in ptp_unpack_Sony_DPD() secondary enumeration list in ptp-pack.c

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have a memory leak in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c lines 884–885. When processing a secondary enumeration list introduced in 2024+ Sony cameras, the function overwrites dpd-FORM.Enum.SupportedVal...

2.4CVSS0.00181EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/04/17 11:27 p.m.5 views

CVE-2026-40336

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have a memory leak in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c lines 884–885. When processing a secondary enumeration list introduced in 2024+ Sony cameras, the function overwrites dpd-FORM.Enum.SupportedVal...

2.4CVSS5.3AI score0.00181EPSS
Exploits0
CVE
CVE
added 2026/04/17 11:27 p.m.20 views

CVE-2026-40336

Summary (CVE-2026-40336) libgphoto2 (versions up to and including 2.5.33) has a memory leak in PTP handling for Sony DPD secondary enumeration lists. In ptp-pack.c, ptp_unpack_Sony_DPD() overwrites dpd->FORM.Enum.SupportedValue with a new calloc() without freeing the prior allocation (offendin...

2.4CVSS5.7AI score0.00181EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.13 views

PT-2026-33530

Name of the Vulnerable Software and Affected Versions libgphoto2 versions prior to 2.5.34 Description A memory leak exists in the ptp unpack Sony DPD function within camlibs/ptp2/ptp-pack.c. When processing a secondary enumeration list used in 2024+ Sony cameras, the function overwrites the...

5.2CVSS5.8AI score0.00198EPSS
Exploits0References19
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.7 views

PT-2026-33537

Name of the Vulnerable Software and Affected Versions libgphoto2 versions prior to 2.5.34 Description An out-of-bounds read exists in the ptp unpack Sony DPD function within camlibs/ptp2/ptp-pack.c. The issue occurs because the function reads the FormFlag byte using dtoh8odata, poffset without...

6.1CVSS5.8AI score0.00218EPSS
Exploits0References34
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.12 views

PT-2026-33536

Name of the Vulnerable Software and Affected Versions libgphoto2 versions prior to 2.5.34 Description An out-of-bounds read exists in the PTP DPFF Enumeration case of the ptp unpack Sony DPD function within camlibs/ptp2/ptp-pack.c. The function reads a 2-byte enumeration count N via dtoh16odata,...

6.1CVSS5.8AI score0.00218EPSS
Exploits0References34
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.5 views

Sony IP Cameras Cross-Site Request Forgery (CVE-2013-3539)

Cross-site request forgery CSRF vulnerability in the command/user.cgi in Sony SNC CH140, SNC CH180, SNC CH240, SNC CH280, SNC DH140, SNC DH140T, SNC DH180, SNC DH240, SNC DH240T, SNC DH280, and possibly other camera models allows remote attackers to hijack the authentication of administrators for...

6.8CVSS6AI score0.08788EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.7 views

Sony IP Cameras Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-7834)

SONY SNC-CH115, SNC-CH120, SNC-CH160, SNC-CH220, SNC-CH260, SNC-DH120, SNC-DH120T, SNC-DH160, SNC-DH220, SNC-DH220T, SNC-DH260, SNC-EB520, SNC-EM520, SNC-EM521, SNC-ZB550, SNC-ZM550, SNC-ZM551, SNC-EP550, SNC- EP580, SNC-ER550, SNC-ER550C, SNC-ER580, SNC-ER585, SNC-ER585H, SNC- ZP550, SNC-ZR550,...

8.8CVSS7.2AI score0.03901EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/01/23 10:3 a.m.198 views

Exploit for CVE-2025-36911

WhisperPair Exploit Toolkit CVE-2025-36911 !Python 3.8+...

7.1CVSS5.7AI score0.06942EPSS
Exploits14
Hacker One
Hacker One
added 2026/01/17 11:59 a.m.24 views

Sony: Improper State Validation on Sony WH-CH520 via BLE Command Service leads to unauthorized Bluetooth pairing and audio hijacking

A vulnerability was discovered in the firmware of the Sony WH-CH520 headset. The vulnerability allowed an unauthenticated write to a proprietary Sony command service via Bluetooth Low Energy BLE, causing the device to become discoverable and accept a standard Bluetooth Security Manager Protocol S...

7.1CVSS5.5AI score0.06942EPSS
Exploits14
RedhatCVE
RedhatCVE
added 2026/01/09 10:55 a.m.10 views

CVE-2022-23747

In Sony Xperia series 1, 5, and Pro, an out of bound memory access can occur due to lack of validation of the number of frames being passed during music playback...

9.8CVSS7AI score0.10011EPSS
Exploits1References1
OSV
OSV
added 2026/01/06 4:15 p.m.7 views

CVE-2020-36923

Sony BRAVIA Digital Signage 1.7.8 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization controls. Attackers can access hidden system resources like '//content-creation' by manipulating client-side access restrictions...

6.9CVSS5.8AI score0.00924EPSS
Exploits2References9
OSV
OSV
added 2026/01/06 4:15 p.m.6 views

CVE-2020-36922

Sony BRAVIA Digital Signage 1.7.8 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive system details through API endpoints. Attackers can retrieve network interface information, server configurations, and system metadata by sending requests t...

7.5CVSS5.8AI score0.0055EPSS
Exploits2References9
OSV
OSV
added 2026/01/06 4:15 p.m.5 views

CVE-2020-36924

Sony BRAVIA Digital Signage 1.7.8 contains a remote file inclusion vulnerability that allows attackers to inject arbitrary client-side scripts through the content material URL parameter. Attackers can exploit this vulnerability to hijack user sessions, execute cross-site scripting code, and modif...

6.1CVSS5.9AI score0.0048EPSS
Exploits2References9
NVD
NVD
added 2026/01/06 4:15 p.m.7 views

CVE-2020-36923

Sony BRAVIA Digital Signage 1.7.8 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization controls. Attackers can access hidden system resources like '//content-creation' by manipulating client-side access restrictions...

9.8CVSS0.00924EPSS
Exploits2References9
NVD
NVD
added 2026/01/06 4:15 p.m.4 views

CVE-2020-36924

Sony BRAVIA Digital Signage 1.7.8 contains a remote file inclusion vulnerability that allows attackers to inject arbitrary client-side scripts through the content material URL parameter. Attackers can exploit this vulnerability to hijack user sessions, execute cross-site scripting code, and modif...

6.1CVSS0.0048EPSS
Exploits2References9
Vulnrichment
Vulnrichment
added 2026/01/06 3:52 p.m.3 views

CVE-2020-36924 Sony BRAVIA Digital Signage 1.7.8 Unauthenticated Remote File Inclusion

Sony BRAVIA Digital Signage 1.7.8 contains a remote file inclusion vulnerability that allows attackers to inject arbitrary client-side scripts through the content material URL parameter. Attackers can exploit this vulnerability to hijack user sessions, execute cross-site scripting code, and modif...

6.1CVSS6.1AI score0.0048EPSS
Exploits2References9
CVE
CVE
added 2026/01/06 3:52 p.m.16 views

CVE-2020-36924

Sony BRAVIA Digital Signage 1.7.8 is affected by a remote file inclusion vulnerability in the content material URL parameter. The issue allows attackers to inject arbitrary client-side scripts, potentially hijacking user sessions, performing cross-site scripting, and altering display content by m...

6.1CVSS6.1AI score0.0048EPSS
Exploits2References9Affected Software1
Cvelist
Cvelist
added 2026/01/06 3:52 p.m.27 views

CVE-2020-36923 Sony BRAVIA Digital Signage 1.7.8 Client-Side Protection Bypass via IDOR

Sony BRAVIA Digital Signage 1.7.8 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization controls. Attackers can access hidden system resources like '//content-creation' by manipulating client-side access restrictions...

9.8CVSS0.00924EPSS
Exploits2References8
Rows per page
Query Builder