CVE-2020-5589

CVE-2020-5589

Vendor Sony Corporation
Product Sony wireless headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N, WI-SP600N
Weakness CWE-306 · Missing auth
Published June 9, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

SONY Wireless Headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N and WI-SP600N with firmware versions prior to 4.5.2 have vulnerability that someone within the Bluetooth range can make the Bluetooth pairing and operate such as changing volume of the product.

Key dates

02Disclosure timeline

June 9, 2020 CVE published
August 4, 2024 Record updated