3 matches found
EUVD-2017-8901
Malware in sbrugna...
BOSE SoundTouch cross-site scripting vulnerability (CNVD-2018-08339)
The BOSE SoundTouch is a wireless speaker device from the American company BOSE. A cross-site scripting vulnerability exists in BOSE SoundTouch. A remote attacker could exploit this vulnerability to compromise an itunes/pandora account with specially crafted song data from a music service...
CVE-2017-17749
Bose SoundTouch devices allow XSS via crafted song data from a music service, as demonstrated by Pandora...