Permissions, Privileges, and Access Controls in Sony VAIO Update - CVE-2019-5981
Published: June 24, 2019 / Updated: June 25, 2019
Vulnerability identifier: #VU18885
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2019-5981
CWE-ID: CWE-264
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Sony Corporation
Affected software:
Sony VAIO Update
Sony VAIO Update
Detailed vulnerability description
The vulnerability allows a local user to execute arbitrary file with administrative privileges.
The vulnerability exists due to unspecified error that can lead to execution of arbitrary file with administrative privileges.
How to mitigate CVE-2019-5981
Install updates from vendor's website.