Vulnerability Details CVE-2016-7830
Sony PCS-XG100, PCS-XG100S, PCS-XG100C, PCS-XG77, PCS-XG77S, PCS-XG77C devices with firmware versions prior to Ver.1.51 and PCS-XC1 devices with firmware version prior to Ver.1.22 allow an attacker on the same network segment to bypass authentication to perform administrative operations via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.3%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 5.8
References
- https://jvn.jp/en/jp/JVN42070907/index.html
- https://www.sony.co.uk/pro/support/attachment/1237494431832/1237494431864/videoconferencesecurityenhancement-v3.pdf
- https://jvn.jp/en/jp/JVN42070907/index.html
- https://www.sony.co.uk/pro/support/attachment/1237494431832/1237494431864/videoconferencesecurityenhancement-v3.pdf
Products affected by CVE-2016-7830
-
cpe:2.3:h:sony:pcs-xc1:-
-
cpe:2.3:h:sony:pcs-xg100:-
-
cpe:2.3:h:sony:pcs-xg100c:-
-
cpe:2.3:h:sony:pcs-xg100s:-
-
cpe:2.3:h:sony:pcs-xg77:-
-
cpe:2.3:h:sony:pcs-xg77c:-
-
cpe:2.3:h:sony:pcs-xg77s:-
-
cpe:2.3:o:sony:pcs-xc1_firmware:1.21
-
cpe:2.3:o:sony:pcs-xg100_firmware:1.42
-
cpe:2.3:o:sony:pcs-xg100_firmware:1.50
-
cpe:2.3:o:sony:pcs-xg77_firmware:1.42
-
cpe:2.3:o:sony:pcs-xg77_firmware:1.50