Sony Xperia - 4 CVEs (Page 1/1)

About “Sony Xperia”

A curated feed of “Sony Xperia”-related CVEs appears below. We currently track 4 CVEs for this tag (all time). In the last 365 days, 0 were published. Average CVSS is 6.0 (all time), and 25% are rated High/Critical (all time). Top CWEs (all time): CWE-610 - Externally Controlled Reference to a Resource in Another Sphere, CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), CWE-20 - Improper Input Validation.

In our taxonomy this topic maps to a LOW impact class. Mobile OS and devices protect account and app access. Update OS, enforce MDM policies, disable sideloading, and restrict developer options. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

Support & lifecycle: sony-xperia

This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.

Cycle	Release	Latest	EOL
10-vii	2025-09-19	-	2031-08-01
1-vii	2025-06-04	-	2031-04-01
10-vi	2024-06-13	-	2028-05-01
1-vi	2024-06-03	-	2028-04-01
5-v	2023-09-25	-	2026-08-01 Soon
1-v	2023-07-28	-	2026-05-01 Expired
10-v	2023-06-21	-	2026-06-01 Expired
5-iv	2022-09-22	-	2025-09-01 Expired
10-iv	2022-06-30	-	2025-05-01 Expired
1-iv	2022-06-11	-	2025-05-01 Expired
pro-i	2021-12-02	-	2023-11-01 Expired
5-iii	2021-10-08	-	2023-07-01 Expired
1-iii	2021-08-25	-	2023-07-01 Expired
10-iii	2021-06-11	-	2023-07-01 Expired
pro	2021-01-27	-	2023-02-01 Expired
5-ii	2020-10-12	-	2022-10-01 Expired
1-ii	2020-05-22	-	2022-06-01 Expired
10-ii	2020-05-05	-	2022-03-01 Expired
l4	2020-04-28	-	2022-01-01 Expired
5	2019-10-05	-	2021-10-01 Expired
1	2019-05-30	-	2021-10-01 Expired
10-plus	2019-02-27	-	2021-10-01 Expired
10	2019-02-27	-	2021-10-01 Expired
l3	2019-02-01	-	2020-12-01 Expired

Maintained Soon (≤ 180 days) Expired

Subscribe lifecycle: RSS · RSS (expired) · ICS

Subscribe CVEs: RSS for “Sony Xperia” · RSS (High+Critical only)

2022-08-17

Critical

CVE-2022-23747

In Sony Xperia series 1, 5, and Pro, an out of bound memory access can occur due to lack of validation of the number of frames being passed during music playback.

CVSS: 9.8 CWE: CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') View on NVD

2019-11-14

Low

CVE-2019-15744

The Sony Xperia Xperia XZs Android device with a build fingerprint of Sony/keyaki_softbank/keyaki_softbank:7.1.1/TONE3-3.0.0-SOFTBANK-170517-0323/1:user/dev-keys contains a pre-installed app with a p…

CVSS: 3.3 CWE: CWE-610 - Externally Controlled Reference to a Resource in Another Sphere View on NVD

Medium

CVE-2019-15743

The Sony Xperia Touch Android device with a build fingerprint of Sony/blanc_windy/blanc_windy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys contains a pre-installed app with a package name…

CVSS: 5.5 CWE: CWE-610 - Externally Controlled Reference to a Resource in Another Sphere View on NVD

2019-04-25

Medium

CVE-2018-14983

The Sony Xperia L1 Android device with a build fingerprint of Sony/G3313/G3313:7.0/43.0.A.6.49/2867558199:user/release-keys contains the android framework (i.e., system_server) with a package name of…

CVSS: 5.5 CWE: CWE-20 - Improper Input Validation View on NVD