CNNVD-202601-1019 Information

Jan 06, 2026 cve

CNNVD ID

CNNVD-202601-1019

CVE-2020-36924

  • CNNVD Published: 2026-01-06

Description (Chinese)

Sony BRAVIA Digital Signage是日本索尼(Sony)公司的一套数字标牌系统。 Sony BRAVIA Digital Signage 1.7.8版本存在安全漏洞,该漏洞源于内容素材URL参数存在远程文件包含漏洞,可能导致劫持用户会话、执行跨站脚本代码和修改显示内容。

Description (English)

Sony Bravia Digital Signage is a digital branding system for Sony. There is a security loophole in version 1.7.8 of Sony Bravia Digital Signage, which stems from the fact that the content material URL parameter contains a remote file containing loopholes that could lead to the hijacking of user sessions, the execution of cross-site script codes and the modification of displays.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

索尼

Published

2026-01-06

Last Modified

2026-02-24

References

https://cxsecurity.com/issue/WLB-2020120030 https://exchange.xforce.ibmcloud.com/vulnerabilities/192605 https://packetstorm.news/files/id/160345 https://pro-bravia.sony.net https://pro-bravia.sony.net/resources/software/bravia-signage/ https://pro.sony/ue_US/products/display-software https://www.exploit-db.com/exploits/49186 https://www.vulncheck.com/advisories/sony-bravia-digital-signage-unauthenticated-remote-file-inclusion https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5612.php

Share on: