VYPR
Unrated severityNVD Advisory· Published Jan 6, 2026· Updated Jan 26, 2026

Sony BRAVIA Digital Signage 1.7.8 Unauthenticated Remote File Inclusion

CVE-2020-36924

Description

Sony BRAVIA Digital Signage 1.7.8 contains a remote file inclusion vulnerability that allows attackers to inject arbitrary client-side scripts through the content material URL parameter. Attackers can exploit this vulnerability to hijack user sessions, execute cross-site scripting code, and modify display content by manipulating the input material type.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.