Sonos Era 300 vulnerabilities
5 known vulnerabilities affecting sonos/era_300.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH4
Vulnerabilities
Page 1 of 1
CVE-2026-4149P2CRITICALCVSS 9.8v17.5 (build 91.0-70070)2026-04-11
CVE-2026-4149 [CRITICAL] CWE-119 CVE-2026-4149: Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability. This vulnerabil
Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos Era 300. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the handling of the DataOffset field within SMB responses.
nvd
CVE-2025-1048P2HIGHCVSS 8.8v81.1-580742025-04-23
CVE-2025-1048 [HIGH] CWE-416 CVE-2025-1048: Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability. This vulnerability
Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the processing of SMB data. The issue results
nvd
CVE-2025-1049P3HIGHCVSS 8.8v81.1-580742025-04-23
CVE-2025-1049 [HIGH] CWE-122 CVE-2025-1049: Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability all
Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the processing of ID3 data. The issue results from the lack of prop
nvd
CVE-2025-1051P3HIGHCVSS 8.8v81.1-580742025-06-02
CVE-2025-1051 [HIGH] CWE-122 CVE-2025-1051: Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability all
Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the processing of ALAC data. The issue results from the lack of pro
nvd
CVE-2025-1050P3HIGHCVSS 8.8v81.1-580742025-04-23
CVE-2025-1050 [HIGH] CWE-787 CVE-2025-1050: Sonos Era 300 Out-of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows net
Sonos Era 300 Out-of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the processing of HLS playlist data. The issue results from the lack of pr
nvd