Era 300 Security Vulnerabilities and Issues — Era 300 CVE List

Lucene search

SonosEra 300

3 matches found

CVE•added 2025/04/23 5:16 p.m.•43 views

CVE-2025-1049

Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processi...

8.8CVSS9.1AI score0.00085EPSS

CVE•added 2025/04/23 5:16 p.m.•38 views

CVE-2025-1048

Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability. The specific flaw exist...

8.8CVSS9.1AI score0.00093EPSS

CVE•added 2025/04/23 5:16 p.m.•35 views

CVE-2025-1050

Sonos Era 300 Out-of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of H...

8.8CVSS7.9AI score0.00093EPSS