High severity7.8NVD Advisory· Published Aug 2, 2017· Updated May 13, 2026

CVE-2017-2286

Description

Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier (for RC-S310, RC-S320, RC-S330, RC-S370, RC-S380, RC-S380/S), NFC Port Software Version 5.3.6.7 and earlier (for RC-S320, RC-S310/J1C, RC-S310/ED4C), PC/SC Activator for Type B Ver.1.2.1.0 and earlier, SFCard Viewer 2 Ver.2.5.0.0 and earlier, NFC Net Installer Ver.1.1.0.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Affected products

Sony Corporation/NFC Port Software (for RC-S310, RC-S320, RC-S330, RC-S370, RC-S380, RC-S380/S)v5
Range: Version 5.5.0.6 and earlier
Sony Corporation/NFC Port Software (for RC-S320, RC-S310/J1C, RC-S310/ED4C)v5
Range: Version 5.3.6.7 and earlier
Sony Corporation/PC/SC Activator for Type Bv5
Range: Ver.1.2.1.0 and earlier
Sony Corporation/SFCard Viewer 2v5
Range: Ver.2.5.0.0 and earlier
Sony Corporation/NFC Net Installerv5
Range: Ver.1.1.0.0 and earlier
Sony/Nfc Net Installer
cpe:2.3:o:sony:nfc_net_installer:*:*:*:*:*:*:*:*
Range: <=1.1.0.0
Sony/Nfc Port Firmware
cpe:2.3:o:sony:nfc_port_firmware:*:*:*:*:*:*:*:*
Range: <=5.5.0.6
Sony/Pc\/sc Activator For Type B
cpe:2.3:o:sony:pc\/sc_activator_for_type_b:*:*:*:*:*:*:*:*
Range: <=1.2.1.0
Sony/Sfcard Viewer 2
cpe:2.3:o:sony:sfcard_viewer_2:2.5.0.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN16136413/index.htmlnvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000