CVE-2018-0690

Summary

An unvalidated software update vulnerability in Music Center for PC version 1.0.02 and earlier could allow a man-in-the-middle attacker to tamper with an update file and inject executable files.

Affected Software

VendorProductVersion RangeStatus
Sony Video & Sound Products Inc.Music Center for PCversion 1.0.02 and earlieraffected

Weaknesses

  • Code injection

ADP Enrichment

CVE Program Container

Additional References

References