Lucene search
Phan Thanh Duy (@PTDuy) & Nguyen Hoang Thach (@hi_im_d4rkn3ss) of STAR Labs SG Pte. Ltd.ZDI-23-448HistoryApr 14, 2023 - 12:00 a.m.
(Pwn2Own) Sonos One Speaker msprox Endpoint Out-Of-Bounds Read Information Disclosure Vulnerability
2023-04-1400:00:00
Phan Thanh Duy (@PTDuy) & Nguyen Hoang Thach (@hi_im_d4rkn3ss) of STAR Labs SG Pte. Ltd.
www.zerodayinitiative.com
17
pwn2own
sonos one speaker
msprox endpoint
out-of-bounds read
information disclosure
vulnerability
network-adjacent attackers
authentication bypass
user-supplied data
arbitrary code execution
root context
0.001 Low
EPSS
Percentile
23.1%
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos One Speaker. Authentication is not required to exploit this vulnerability. The specific flaw exists within the msprox endpoint. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of root.
Related
nvd
nvd
CVE-2023-27353
2023-04-20 22:15:07
cve
cve
CVE-2023-27353
2023-04-20 22:15:07
prion
prion
Design/Logic Flaw
2023-04-20 22:15:00
cvelist
cvelist
CVE-2023-27353
2023-04-20 00:00:00
thn
thn