Vulnerabilities > Sonos > S2

DATE CVE VULNERABILITY TITLE RISK
2023-04-20 CVE-2023-27352 Use After Free vulnerability in Sonos ONE Firmware, S1 and S2
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos One Speaker 70.3-35220.
low complexity
sonos CWE-416
8.8
2023-04-20 CVE-2023-27353 Out-of-bounds Read vulnerability in Sonos ONE Firmware, S1 and S2
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos One Speaker 70.3-35220.
low complexity
sonos CWE-125
6.5
2023-04-20 CVE-2023-27354 Integer Overflow or Wraparound vulnerability in Sonos ONE Firmware, S1 and S2
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos One Speaker 70.3-35220.
low complexity
sonos CWE-190
6.5
2023-04-20 CVE-2023-27355 Stack-based Buffer Overflow vulnerability in Sonos ONE Firmware, S1 and S2
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos One Speaker 70.3-35220.
low complexity
sonos CWE-121
8.8
2022-02-18 CVE-2022-24046 Integer Underflow (Wrap or Wraparound) vulnerability in Sonos S1 and S2
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos One Speaker prior to 3.4.1 (S2 systems) and 11.2.13 build 57923290 (S1 systems).
low complexity
sonos CWE-191
8.3
2022-02-18 CVE-2022-24049 Out-of-bounds Write vulnerability in Sonos S1 and S2
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sonos One Speaker prior to 3.4.1 (S2 systems) and 11.2.13 build 57923290 (S1 systems).
network
low complexity
sonos CWE-787
critical
10.0