CVE-2025-5820 – Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass

June 20, 2025

CVE ID : CVE-2025-5820

Published : June 21, 2025, 1:15 a.m. | 31 minutes ago

Description : Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected Sony XAV-AX8500 devices. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the implementation of Bluetooth ERTM channel communication. The issue results from improper channel data initialization. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-26285.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6216 – Allegra Password Recovery Authentication Bypass Vulnerability

Next Article CVE-2025-5479 – Sony XAV-AX8500 Bluetooth AVCTP Protocol Heap-based Buffer Overflow Remote Code Execution

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

5 ways business leaders can transform workplace culture – and it starts by listening

My 4 favorite image editing apps on Linux – and two are free Photoshop alternatives

How Google’s Genie 3 could change AI video – and let you build your own interactive worlds

How you’re charging your tablet is slowly killing it – 3 methods to avoid (and the right way)

Establishing Consistent Data Foundations with Laravel’s Database Population System

Establishing Consistent Data Foundations with Laravel’s Database Population System

Generate Postman Collections from Laravel Routes

This Week in Laravel: Free Laravel Idea, Laracon News, and More

Lenovo Legion Go 2 vs Legion Go — How Do These Gaming Handhelds Compare Based on Rumored Specs?

Lenovo Legion Go 2 vs Legion Go — How Do These Gaming Handhelds Compare Based on Rumored Specs?

9 Default Settings in Windows 11 You Didn’t Know Could Affect Performance and Privacy

DICE Responds to Battlefield 6 Community: Key Updates on Map Flow and Class Mechanics

CVE-2025-5820 – Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass

Black Hat USA 2025: Does successful cybersecurity today increase cyber-risk tomorrow?

Black Hat USA 2025: Policy compliance and the myth of the silver bullet

It only took Call of Duty: Warzone going back in time to make the game so much better — to the point even I enjoy it now

CVE-2025-53901 – Wasmtime WASIp1 Denial-of-Service Vulnerability

CVE-2025-27241 – OpenHarmony NULL Pointer Dereference Denial of Service Vulnerability

Kodeco Podcast: Kotlin Symbol Processing – Podcast V2, S3 E4 [FREE]

CVE-2025-6222 – “WooCommerce Refund And Exchange with RMA – Warranty Management, Refund Policy, Manage User Wallet Arbitrary File Upload Vulnerability”

Agent mode 101: All about GitHub Copilot’s powerful mode

Old Hotmail Sign-In: How to Access Your Classic Account Easily

Best PHP Project for Final Year Students: Learn, Build, and get Successful with PHPGurukul

CVE-2025-5820 – Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass

Related Posts