CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

85 matches found

EUVD•added 2026/04/11 3:30 a.m.•5 views

EUVD-2026-21627

Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos Era 300. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

10CVSS7.8AI score0.01052EPSS

Exploits0References2

NVD•added 2026/04/11 1:16 a.m.•3 views

CVE-2026-4149

10CVSS0.01052EPSS

Exploits0References1

ATTACKERKB•added 2026/04/11 12:12 a.m.•3 views

CVE-2026-4149

10CVSS7.8AI score0.01052EPSS

Exploits0References2

Vulnrichment•added 2026/04/11 12:12 a.m.•4 views

CVE-2026-4149 Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability

10CVSS6.3AI score0.01052EPSS

Exploits0References1

CVE•added 2026/04/11 12:12 a.m.•23 views

CVE-2026-4149

The CVE-2026-4149 entry concerns Sonos Era 300. Affected component: SMB response handling (DataOffset) leading to out-of-bounds memory access and remote code execution. Impact: attacker can run code with kernel context via a network vector without authentication (high/CRITICAL). CVSS data: NVD/3....

10CVSS7.8AI score0.01052EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/04/11 12:12 a.m.•28 views

CVE-2026-4149 Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability

10CVSS0.01052EPSS

Exploits0References1

CNNVD•added 2026/04/11 12:0 a.m.•2 views

Sonos Era 300 缓冲区错误漏洞

The Sonos Era 300 is a spatial audio speaker from the American company Sonos, equipped with Dolby Atmos technology. The Sonos Era 300 has a buffer error vulnerability, which stems from insufficient validation of the DataOffset field in SMB responses, potentially allowing remote code execution...

10CVSS7.8AI score0.01052EPSS

Exploits0References1

Positive Technologies•added 2026/03/16 12:0 a.m.•3 views

PT-2026-25833

Name of the Vulnerable Software and Affected Versions Sonos Era 300 affected versions not specified Description The Sonos Era 300 is affected by an out-of-bounds access issue related to SMB responses, potentially leading to remote code execution. The issue was discovered by dmdung of STAR Labs SG...

10CVSS7.5AI score0.01052EPSS

Exploits0References3

Zero Day Initiative•added 2026/03/16 12:0 a.m.•4 views

Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos Era 300. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the DataOffset field within SMB responses. The issue results from the lack...

10CVSS6.2AI score0.01052EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-46505