CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-0690

An unvalidated software update vulnerability in Music Center for PC version 1.0.02 and earlier could allow a man-in-the-middle attacker to tamper with an update file and inject executable files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 62.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.1

References

http://jvn.jp/en/jp/JVN36623716/index.html
https://musiccenter.sony.net/en/downloads/update.php
http://jvn.jp/en/jp/JVN36623716/index.html
https://musiccenter.sony.net/en/downloads/update.php

Products affected by CVE-2018-0690

Sony » Music Center For Pc » Version: 1.0.00

cpe:2.3:a:sony:music_center_for_pc:1.0.00
Sony » Music Center For Pc » Version: 1.0.01

cpe:2.3:a:sony:music_center_for_pc:1.0.01
Sony » Music Center For Pc » Version: 1.0.02

cpe:2.3:a:sony:music_center_for_pc:1.0.02

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0690

Products

Pricing

Contact Us