Primary

Context

Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass Vulnerability

Vulnerability

An authentication bypass vulnerability has been identified in the Sony XAV-AX8500 Bluetooth ERTM channel communication. This issue arises from improper initialization of channel data, allowing network-adjacent attackers to bypass authentication on the affected device. The vulnerability can be exploited without authentication.

Impact

Exploitation of this vulnerability allows for authentication to be bypassed on the affected device.

Remediation

Sony has released a firmware update to address this vulnerability. Users can download the update from the Sony support website for the XAV-AX8500 model.

Added: Jun 21, 2025, 1:20 AM

Updated: Jun 21, 2025, 1:20 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.9

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.9

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating