CVE-2020-5589
Last modified
CVE-2020-5589 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. SONY Wireless Headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N and WI-SP600N with firmware versions prior to 4.5.2 have vulnerability that someone within the Bluetooth range can make the Bluetooth pairing and operate such as changing volume of the product.. EPSS estimates a 0.58% chance of exploitation in the next 30 days.
Description
SONY Wireless Headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N and WI-SP600N with firmware versions prior to 4.5.2 have vulnerability that someone within the Bluetooth range can make the Bluetooth pairing and operate such as changing volume of the product.
Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Sony | Wf-1000x Firmware | All versions |
| Sony | Wf-Sp700n Firmware | All versions |
| Sony | Wh-1000xm2 Firmware | All versions |
| Sony | Wh-1000xm3 Firmware | All versions |
| Sony | Wh-Ch700n Firmware | All versions |
| Sony | Wh-H900n Firmware | All versions |
| Sony | Wh-Xb700 Firmware | All versions |
| Sony | Wh-Xb900n Firmware | All versions |
| Sony | Wi-1000x Firmware | All versions |
| Sony | Wi-C600n Firmware | All versions |
| Sony | Wi-Sp600n Firmware | All versions |
References
- https://jvn.jp/en/jp/JVN67447798/Third Party Advisory
- https://jvn.jp/en/jp/JVN67447798/Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-5589?
How severe is CVE-2020-5589?
How do I fix CVE-2020-5589?
Are you affected by CVE-2020-5589?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST