Out-of-Bounds Write Vulnerability in Sonos Era 300 Speakers
CVE-2025-1050
What is CVE-2025-1050?
CVE-2025-1050 is a critical vulnerability affecting the Sonos Era 300 speakers, which are designed to deliver high-quality audio experience with smart connectivity features. This vulnerability arises from an out-of-bounds write condition in the processing of HLS playlist data, where the software fails to adequately validate user-supplied input. As a result, attackers who are on the same network as the affected device can exploit this flaw to execute arbitrary code without requiring any authentication. If successfully executed, this can lead to unauthorized control over the speaker, with potential access to sensitive data or the ability to manipulate the device's functionality.
Potential impact of CVE-2025-1050
-
Remote Code Execution: The primary consequence of CVE-2025-1050 is the ability for attackers to execute unauthorized code on the Sonos Era 300 speakers. This compromises the integrity of the device and potentially leads to further attacks on connected systems.
-
Access to Sensitive Information: Successful exploitation of this vulnerability could grant an attacker access to sensitive data that the speaker may have, including network details or personal information from associated accounts. This exposure raises concerns not only for individual users but also for broader home network security.
-
Denial of Service: Attackers could leverage this vulnerability to disrupt the functioning of the Sonos Era 300 speakers, leading to service outages. Such interruptions in service could degrade the user experience and harm the reputation of the Sonos brand, along with causing inconvenience to users.
Affected Version(s)
Era 300 81.1-58074