Sonos S1 vulnerabilities
8 known vulnerabilities affecting sonos/s1.
Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH5MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-24049P2CRITICALCVSS 9.8fixed in 11.2.132022-02-18
CVE-2022-24049 [CRITICAL] CWE-121 CVE-2022-24049: This vulnerability allows remote attackers to execute arbitrary code on affected installations of So
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos One Speaker prior to 3.4.1 (S2 systems) and 11.2.13 build 57923290 (S1 systems). Authentication is not required to exploit this vulnerability. The specific flaw exists within the ALAC audio codec. The issue results from the lack of proper valida
nvd
CVE-2022-24046P2HIGHCVSS 8.8fixed in 11.2.132022-02-18
CVE-2022-24046 [HIGH] CWE-191 CVE-2022-24046: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installat
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos One Speaker prior to 3.4.1 (S2 systems) and 11.2.13 build 57923290 (S1 systems). Authentication is not required to exploit this vulnerability. The specific flaw exists within the anacapd daemon. The issue results from the lack of proper va
nvd
CVE-2025-1048P2HIGHCVSS 8.8fixed in 57.22-611622025-04-23
CVE-2025-1048 [HIGH] CWE-416 CVE-2025-1048: Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability. This vulnerability
Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the processing of SMB data. The issue results
nvd
CVE-2023-27355P3HIGHCVSS 8.8fixed in 11.7.12023-04-20
CVE-2023-27355 [HIGH] CWE-121 CVE-2023-27355: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installat
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos One Speaker 70.3-35220. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MPEG-TS parser. The issue results from the lack of proper validation of the length of user-supplied data prior to cop
nvd
CVE-2025-1049P3HIGHCVSS 8.8fixed in 57.22-611622025-04-23
CVE-2025-1049 [HIGH] CWE-122 CVE-2025-1049: Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability all
Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the processing of ID3 data. The issue results from the lack of prop
nvd
CVE-2023-27352P3HIGHCVSS 8.8fixed in 11.7.12023-04-20
CVE-2023-27352 [HIGH] CWE-416 CVE-2023-27352: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installat
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos One Speaker 70.3-35220. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the SMB directory query command. The issue results from the lack of validating the existence of an obje
nvd
CVE-2023-27354P3MEDIUMCVSS 6.5fixed in 11.7.12023-04-20
CVE-2023-27354 [MEDIUM] CWE-190 CVE-2023-27354: This vulnerability allows network-adjacent attackers to disclose sensitive information on affected i
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos One Speaker 70.3-35220. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the SMB directory query command. The issue results from the lack of proper validation of user
nvd
CVE-2023-27353P3MEDIUMCVSS 6.5fixed in 11.7.12023-04-20
CVE-2023-27353 [MEDIUM] CWE-125 CVE-2023-27353: This vulnerability allows network-adjacent attackers to disclose sensitive information on affected i
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos One Speaker 70.3-35220. Authentication is not required to exploit this vulnerability. The specific flaw exists within the msprox endpoint. The issue results from the lack of proper validation of user-supplied data, which can resu
nvd