CVE-2016-7830

EPSS 0.7%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

09 Jun 2017Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Sony PCS-XG100, PCS-XG100S, PCS-XG100C, PCS-XG77, PCS-XG77S, PCS-XG77C devices with firmware versions prior to Ver.1.51 and PCS-XC1 devices with firmware version prior to Ver.1.22 allow an attacker on the same network segment to bypass authentication to perform administrative operations via unspecified vectors.

Affected products

Sony Corporation · PCS-XC1 Sony Corporation · PCS-XG100 Sony Corporation · PCS-XG100C Sony Corporation · PCS-XG100S Sony Corporation · PCS-XG77 Sony Corporation · PCS-XG77C Sony Corporation · PCS-XG77S

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jvn.jp/en/jp/JVN42070907/index.html https://www.sony.co.uk/pro/support/attachment/1237494431832/1237494431864/videoconferencesecurityenhancement-v3.pdf