EUVD-2017-8902

Malware in sbrugna...

BOSE SoundTouch cross-site scripting vulnerability (CNVD-2018-08340)

The BOSE SoundTouch is a wireless speaker device from the American company BOSE. A cross-site scripting vulnerability exists in BOSE SoundTouch. A remote attacker can exploit the vulnerability to take control of an account with the help of a specially crafted Spotify public playlist...

Design/Logic Flaw

Bose SoundTouch devices allow XSS via a crafted public playlist from Spotify...

CVE-2017-17750

Bose SoundTouch devices allow XSS via a crafted public playlist from Spotify...

PT-2018-6563 · Spotify +1 · Spotify +1

Name of the Vulnerable Software and Affected Versions: Bose SoundTouch affected versions not specified Description: The issue allows for cross-site scripting XSS attacks through a crafted public playlist from Spotify. Recommendations: At the moment, there is no information about a newer version...