Security Vulnerabilities fixed in Sony VAIO Update Advisory: 00228777

description-logoDescription

Improper download file verification and authorization vulnerability in VAIO Update 7.3.0.03150 and earlier allows remote attackers to conduct a man-in-the-middle attack via a malicious wireless LAN access point and also execute arbitrary executable file with administrative privilege via unspecified vectors. A successful exploitation may result in a malicious file being downloaded or executed.

affected-products-logoAffected Applications

VAIO Update

CVE References

CVE-2019-5982 CVE-2019-5981