Refine your search
1 vulnerability found for The installers of multiple Sony products by Sony Corporation
CVE-2021-20793 (GCVE-0-2021-20793)
Vulnerability from cvelistv5
Published
2021-08-26 01:20
Modified
2024-08-03 17:53
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- Untrusted search path vulnerability
Summary
Untrusted search path vulnerability in the installer of Sony Audio USB Driver V1.10 and prior and the installer of HAP Music Transfer Ver.1.3.0 and prior allows an attacker to gain privileges and execute arbitrary code via a Trojan horse DLL in an unspecified directory.
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Sony Corporation | The installers of multiple Sony products |
Version: The installer of Sony Audio USB Driver V1.10 and prior and The installer of HAP Music Transfer Ver.1.3.0 and prior |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:53:22.532Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.sony.co.uk/electronics/support/software/00266749"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.sony.co.uk/electronics/support/software/00266758"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.sony.co.uk/electronics/support/software/00266642"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN80288258/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "The installers of multiple Sony products",
"vendor": "Sony Corporation",
"versions": [
{
"status": "affected",
"version": "The installer of Sony Audio USB Driver V1.10 and prior and The installer of HAP Music Transfer Ver.1.3.0 and prior"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in the installer of Sony Audio USB Driver V1.10 and prior and the installer of HAP Music Transfer Ver.1.3.0 and prior allows an attacker to gain privileges and execute arbitrary code via a Trojan horse DLL in an unspecified directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Untrusted search path vulnerability",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-08-26T01:20:31.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.sony.co.uk/electronics/support/software/00266749"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.sony.co.uk/electronics/support/software/00266758"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.sony.co.uk/electronics/support/software/00266642"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://jvn.jp/en/jp/JVN80288258/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2021-20793",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "The installers of multiple Sony products",
"version": {
"version_data": [
{
"version_value": "The installer of Sony Audio USB Driver V1.10 and prior and The installer of HAP Music Transfer Ver.1.3.0 and prior"
}
]
}
}
]
},
"vendor_name": "Sony Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in the installer of Sony Audio USB Driver V1.10 and prior and the installer of HAP Music Transfer Ver.1.3.0 and prior allows an attacker to gain privileges and execute arbitrary code via a Trojan horse DLL in an unspecified directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.sony.co.uk/electronics/support/software/00266749",
"refsource": "MISC",
"url": "https://www.sony.co.uk/electronics/support/software/00266749"
},
{
"name": "https://www.sony.co.uk/electronics/support/software/00266758",
"refsource": "MISC",
"url": "https://www.sony.co.uk/electronics/support/software/00266758"
},
{
"name": "https://www.sony.co.uk/electronics/support/software/00266642",
"refsource": "MISC",
"url": "https://www.sony.co.uk/electronics/support/software/00266642"
},
{
"name": "https://jvn.jp/en/jp/JVN80288258/index.html",
"refsource": "MISC",
"url": "https://jvn.jp/en/jp/JVN80288258/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2021-20793",
"datePublished": "2021-08-26T01:20:31.000Z",
"dateReserved": "2020-12-17T00:00:00.000Z",
"dateUpdated": "2024-08-03T17:53:22.532Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}