cvelist/2020/5xxx/CVE-2020-5589.json

{
    "data_type": "CVE",
    "data_format": "MITRE",
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2020-5589",
        "ASSIGNER": "vultures@jpcert.or.jp",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "Sony Corporation",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Sony wireless headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N, WI-SP600N",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "firmware versions prior to 4.5.2"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "CWE-306: missing authentication for critical function"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "url": "https://www.sony.com/electronics/support/audio-video-headphones",
                "refsource": "MISC",
                "name": "https://www.sony.com/electronics/support/audio-video-headphones"
            },
            {
                "url": "https://jvn.jp/en/jp/JVN67447798/",
                "refsource": "MISC",
                "name": "https://jvn.jp/en/jp/JVN67447798/"
            }
        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Multiple SONY Wireless Headphones with firmware versions prior to 4.5.2 have vulnerability that someone within the Bluetooth range can make the Bluetooth pairing and operate such as changing volume of the product."
            }
        ]
    }
}
"-Synchronized-Data." 2020-01-06 15:01:05 +00:00			`{`
			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"data_version": "4.0",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2020-5589",`
JPCERT/CC 20200609 CVE-2020-5589 added. 2020-06-09 16:56:09 +09:00			`"ASSIGNER": "vultures@jpcert.or.jp",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "Sony Corporation",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Sony wireless headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N, WI-SP600N",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "firmware versions prior to 4.5.2"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "CWE-306: missing authentication for critical function"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"url": "https://www.sony.com/electronics/support/audio-video-headphones",`
			`"refsource": "MISC",`
			`"name": "https://www.sony.com/electronics/support/audio-video-headphones"`
			`},`
			`{`
			`"url": "https://jvn.jp/en/jp/JVN67447798/",`
			`"refsource": "MISC",`
			`"name": "https://jvn.jp/en/jp/JVN67447798/"`
			`}`
			`]`
"-Synchronized-Data." 2020-01-06 15:01:05 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
JPCERT/CC 20200623-01 CVE-2020-5589 updated. 2020-06-23 12:46:35 +09:00			`"value": "Multiple SONY Wireless Headphones with firmware versions prior to 4.5.2 have vulnerability that someone within the Bluetooth range can make the Bluetooth pairing and operate such as changing volume of the product."`
"-Synchronized-Data." 2020-01-06 15:01:05 +00:00			`}`
			`]`
			`}`
JPCERT/CC 20200609 CVE-2020-5589 added. 2020-06-09 16:56:09 +09:00			`}`