Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:51 p.m.12 views

CVE-2022-24049

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos One Speaker prior to 3.4.1 S2 systems and 11.2.13 build 57923290 S1 systems. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ALAC audio codec...

10CVSS7.2AI score0.07212EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/09/16 12:0 a.m.15 views

Sonos One Speakers S1 App < 11.2.3 build 57923290, S2 App < 13.4.1 Multiple Vulnerabilities

Sonos One speakers are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX = "cpe:/a:sonos:";...

10CVSS7.3AI score0.07212EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/02/18 8:15 p.m.3 views

CVE-2022-24049

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos One Speaker prior to 3.4.1 S2 systems and 11.2.13 build 57923290 S1 systems. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ALAC audio codec...

10CVSS6.4AI score0.07212EPSS
Exploits0References2
CVE
CVE
added 2022/02/18 7:51 p.m.106 views

CVE-2022-24049

CVE-2022-24049 affects Sonos One Speaker (S1/S2). The root cause is a stack-based buffer overflow in the ALAC audio codec due to insufficient validation of the length of user-supplied data before copying. This allows remote code execution with root privileges on affected installations. Affected v...

10CVSS9.7AI score0.07212EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder