CVE-2022-27094

MEDIUM

Sony PlayMemories Home v6.0 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-27094. PoCs published by Saud Alenazi.

AI-analyzed exploit summary This is a writeup describing an unquoted service path vulnerability in Sony PlayMemories Home. The exploit relies on the service's binary path being unquoted, allowing local privilege escalation if an attacker can place a malicious executable in a higher-level directory.

Description

Sony PlayMemories Home v6.0 contains an unquoted service path which allows attackers to escalate privileges to the system level.

Exploits (1)

exploitdb WRITEUP

by Saud Alenazi · textlocalwindows

https://www.exploit-db.com/exploits/50817

View Code ZIP pw:eip

This is a writeup describing an unquoted service path vulnerability in Sony PlayMemories Home. The exploit relies on the service's binary path being unquoted, allowing local privilege escalation if an attacker can place a malicious executable in a higher-level directory.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: Sony PlayMemories Home 6.0

Auth required

Prerequisites: Local access to the system · Ability to write to a directory in the service path

MITRE ATT&CK

T1574.009 - Path Interception by Unquoted Path

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/50817

Scores

CVSS v3 6.7

EPSS 0.0041

EPSS Percentile 32.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-428

Status published

Products (1)

sony/playmemories_home 6.0

Published May 20, 2022

Tracked Since Feb 18, 2026