A bug hunter was rewarded $15,000 for reporting a critical RCE bug in Sony’s PS Now . He described that this bug, when exploited, can let attackers inject malicious code and run in the target users’ systems. While he reported this bug early this year, PlayStation a month after marked it as resolved on patching it.
PlayStation Now Bug Leading to RCE Attacks
Also, Read- Sony Announces Bug Bounty Program For PlayStation 4 Worth $50,000
Thus, PlayStation has set up a bug bounty program on HackerOne earlier this year in hopes of rewarding bug hunters who privately disclose critical bugs in their network and gadgets. This led a bug hunter named Parsia Hakimian to submit an RCE bug in PlayStation Now (PS Now) on May 13th, which was resolved by PlayStation a month later.
My $15K PlayStation bug has finally been disclosed. My one and only tip is to read every single @taviso bug. This is essentially two of his public bugs chained together. https://t.co/0tQyJmn3q9 — Parsia Hakimian (@CryptoGangsta) December 4, 2020
