2 matches found
CVE-2017-17750
Bose SoundTouch devices allow XSS via a crafted public playlist from Spotify...
CVE-2017-17750
CVE-2017-17750 affects Bose SoundTouch devices. The vulnerability is a Cross-Site Scripting (XSS) flaw exploitable via a crafted public playlist from Spotify, enabling script execution in user contexts. Root cause described across sources is XSS triggered by Spotify-public playlists; concrete pro...