Android-Based Sony Smart-TVs Open to Image Pilfering

[silversurfer]

A pair of bugs would allow attackers to compromise the WiFi password of a TV and the multimedia stored inside it.
 
Two vulnerabilities in Android-based smart-TVs from Sony, including the flagship Bravia line, could allow attackers to access WiFi passwords and images stored on the devices.
 
The bugs exist in the Photo Sharing Plus feature of Sony smart-TVs going back to 2015. They were uncovered by xen1thLabs in October; Sony in response has removed the vulnerable application from all new models and the bugs were disclosed on Monday.
 
It’s important to remember that the vulnerabilities exist not only in homes but also in companies and organizations where smart TVs are used in conference and meeting rooms, widening the scope of the threat surface.

The Photo Sharing Plus application allows the uploading of pictures and multimedia from a smartphone to a TV, in order to show content in a slideshow format. The first vulnerability (CVE-2019-11336) allows an attacker, without authentication, to retrieve the WiFi password created by the television when the Photo Sharing Plus application is started. The second (CVE-2019-10886) allows an attacker to read arbitrary files, including images, located within the TV’s software, without authentication.

SOURCE: https://threatpost.com/android-sony-smart-tvs/144133/