CVE-2019-10886
First published: Fri Apr 19 2019(Updated: )
An incorrect access control exists in the Sony Photo Sharing Plus application in the firmware before PKG6.5629 version (for the X7500D TV and other applicable TVs). This vulnerability allows an attacker to read arbitrary files without authentication over HTTP when Photo Sharing Plus application is running. This may allow an attacker to browse a particular directory (e.g. images) inside the private network.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sony Photo Sharing Plus | <pkg6.5629 | |
| Sony Kdl-50w800c | ||
| Sony Kdl-50w805c | ||
| Sony Kdl-50w807c | ||
| Sony Kdl-50w809c | ||
| Sony Kdl-50w820c | ||
| Sony Kdl-55w800c | ||
| Sony Kdl-55w805c | ||
| Sony Kdl-65w850c | ||
| Sony Kdl-65w855c | ||
| Sony Kdl-65w857c | ||
| Sony Kdl-75w850c | ||
| Sony Kdl-75w855c | ||
| Sony X7500d | ||
| Sony Xbr-100z9d | ||
| Sony Xbr-43x800d | ||
| Sony Xbr-43x800e | ||
| Sony Xbr-43x830c | ||
| Sony Xbr-49x700d | ||
| Sony Xbr-49x800c | ||
| Sony Xbr-49x800d | ||
| Sony Xbr-49x800e | ||
| Sony Xbr-49x830c | ||
| Sony Xbr-49x835c | ||
| Sony Xbr-49x835d | ||
| Sony Xbr-49x837c | ||
| Sony Xbr-49x839c | ||
| Sony Xbr-49x900e | ||
| Sony Xbr-55a1e | ||
| Sony Xbr-55x700d | ||
| Sony Xbr-55x800e | ||
| Sony Xbr-55x805c | ||
| Sony Xbr-55x806e | ||
| Sony Xbr-55x807c | ||
| Sony Xbr-55x809c | ||
| Sony Xbr-55x810c | ||
| Sony Xbr-55x850c | ||
| Sony Xbr-55x850d | ||
| Sony Xbr-55x855c | ||
| Sony Xbr-55x855d | ||
| Sony Xbr-55x857c | ||
| Sony Xbr-55x857d | ||
| Sony Xbr-55x900c | ||
| Sony Xbr-55x900e | ||
| Sony Xbr-55x905c | ||
| Sony Xbr-55x907c | ||
| Sony Xbr-55x930d | ||
| Sony Xbr-55x930e | ||
| Sony Xbr-65a1e | ||
| Sony Xbr-65x750d | ||
| Sony Xbr-65x800c | ||
| Sony Xbr-65x805c | ||
| Sony Xbr-65x807c | ||
| Sony Xbr-65x809c | ||
| Sony Xbr-65x810c | ||
| Sony Xbr-65x850c | ||
| Sony Xbr-65x850d | ||
| Sony Xbr-65x850e | ||
| Sony Xbr-65x855c | ||
| Sony Xbr-65x855d | ||
| Sony Xbr-65x857c | ||
| Sony Xbr-65x857d | ||
| Sony Xbr-65x900c | ||
| Sony Xbr-65x900e | ||
| Sony Xbr-65x905c | ||
| Sony Xbr-65x907c | ||
| Sony Xbr-65x930c | ||
| Sony Xbr-65x930d | ||
| Sony Xbr-65x930e | ||
| Sony Xbr-65x935d | ||
| Sony Xbr-65x937d | ||
| Sony Xbr-65z9d | ||
| Sony Xbr-75x850c | ||
| Sony Xbr-75x850d | ||
| Sony Xbr-75x850e | ||
| Sony Xbr-75x855c | ||
| Sony Xbr-75x855d | ||
| Sony Xbr-75x857d | ||
| Sony Xbr-75x900e | ||
| Sony Xbr-75x910c | ||
| Sony Xbr-75x940c | ||
| Sony Xbr-75x940d | ||
| Sony Xbr-75x940e | ||
| Sony Xbr-75x945c | ||
| Sony Xbr-75z9d | ||
| Sony Xbr-77a1e | ||
| Sony Xbr-85x850d | ||
| Sony Xbr-85x855d | ||
| Sony Xbr-85x857d |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/tags
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/sony
- canonical/sony photo sharing plus
- canonical/sony kdl-50w800c
- canonical/sony kdl-50w805c
- canonical/sony kdl-50w807c
- canonical/sony kdl-50w809c
- canonical/sony kdl-50w820c
- canonical/sony kdl-55w800c
- canonical/sony kdl-55w805c
- canonical/sony kdl-65w850c
- canonical/sony kdl-65w855c
- canonical/sony kdl-65w857c
- canonical/sony kdl-75w850c
- canonical/sony kdl-75w855c
- canonical/sony x7500d
- canonical/sony xbr-100z9d
- canonical/sony xbr-43x800d
- canonical/sony xbr-43x800e
- canonical/sony xbr-43x830c
- canonical/sony xbr-49x700d
- canonical/sony xbr-49x800c
- canonical/sony xbr-49x800d
- canonical/sony xbr-49x800e
- canonical/sony xbr-49x830c
- canonical/sony xbr-49x835c
- canonical/sony xbr-49x835d
- canonical/sony xbr-49x837c
- canonical/sony xbr-49x839c
- canonical/sony xbr-49x900e
- canonical/sony xbr-55a1e
- canonical/sony xbr-55x700d
- canonical/sony xbr-55x800e
- canonical/sony xbr-55x805c
- canonical/sony xbr-55x806e
- canonical/sony xbr-55x807c
- canonical/sony xbr-55x809c
- canonical/sony xbr-55x810c
- canonical/sony xbr-55x850c
- canonical/sony xbr-55x850d
- canonical/sony xbr-55x855c
- canonical/sony xbr-55x855d
- canonical/sony xbr-55x857c
- canonical/sony xbr-55x857d
- canonical/sony xbr-55x900c
- canonical/sony xbr-55x900e
- canonical/sony xbr-55x905c
- canonical/sony xbr-55x907c
- canonical/sony xbr-55x930d
- canonical/sony xbr-55x930e
- canonical/sony xbr-65a1e
- canonical/sony xbr-65x750d
- canonical/sony xbr-65x800c
- canonical/sony xbr-65x805c
- canonical/sony xbr-65x807c
- canonical/sony xbr-65x809c
- canonical/sony xbr-65x810c
- canonical/sony xbr-65x850c
- canonical/sony xbr-65x850d
- canonical/sony xbr-65x850e
- canonical/sony xbr-65x855c
- canonical/sony xbr-65x855d
- canonical/sony xbr-65x857c
- canonical/sony xbr-65x857d
- canonical/sony xbr-65x900c
- canonical/sony xbr-65x900e
- canonical/sony xbr-65x905c
- canonical/sony xbr-65x907c
- canonical/sony xbr-65x930c
- canonical/sony xbr-65x930d
- canonical/sony xbr-65x930e
- canonical/sony xbr-65x935d
- canonical/sony xbr-65x937d
- canonical/sony xbr-65z9d
- canonical/sony xbr-75x850c
- canonical/sony xbr-75x850d
- canonical/sony xbr-75x850e
- canonical/sony xbr-75x855c
- canonical/sony xbr-75x855d
- canonical/sony xbr-75x857d
- canonical/sony xbr-75x900e
- canonical/sony xbr-75x910c
- canonical/sony xbr-75x940c
- canonical/sony xbr-75x940d
- canonical/sony xbr-75x940e
- canonical/sony xbr-75x945c
- canonical/sony xbr-75z9d
- canonical/sony xbr-77a1e
- canonical/sony xbr-85x850d
- canonical/sony xbr-85x855d
- canonical/sony xbr-85x857d