CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-5269

Medium Severity
Sonos
SVRS
30/100
CVSSv3
8.8/10
EPSS
0.00462/1

CVE-2024-5269: Sonos Era 100 SMB2 vulnerability allows remote code execution. This use-after-free flaw in SMB2 message handling permits attackers on the same network to execute arbitrary code on Sonos Era 100 smart speakers without authentication. The vulnerability, tracked as ZDI-CAN-22459, stems from a failure to validate object existence before performing operations, leading to potential code execution in the context of root. Despite a CVSS score of 8.8, SOCRadar's Vulnerability Risk Score (SVRS) is 30, indicating a lower level of observed threat activity compared to its potential severity. However, given the ease of exploitation and potential for system compromise, organizations should still monitor for related exploits to mitigate the risk of unauthorized access and control. The presence of CWE-416 highlights the memory corruption aspect, further emphasizing the need for vigilance.

TAGS
In The Wild
VECTOR STRING
CVSS:3.1
AV:A
AC:L
PR:N
UI:N
S:U
C:H
I:H
A:H
PUBLICATION DATE2024-06-06
LAST MODIFIED2024-09-24

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

CVE-2024-5269 | Sonos Sonos Era 100 SMB2 Message use after free
vuldb.com2024-06-01
CVE-2024-5269 | Sonos Sonos Era 100 SMB2 Message use after free | A vulnerability was found in Sonos Sonos Era 100. It has been rated as very critical. Affected by this issue is some unknown functionality of the component SMB2 Message Handler. The manipulation leads to use after free. This vulnerability is handled as CVE-2024-5269. The attack may be launched remotely. There
cve-2024-5269
domains
urls
cves
ZDI-24-545: (Pwn2Own) Sonos Era 100 SMB2 Message Handling Use-After-Free Remote Code Execution Vulnerability
2024-05-31
ZDI-24-545: (Pwn2Own) Sonos Era 100 SMB2 Message Handling Use-After-Free Remote Code Execution Vulnerability | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos Era 100 smart speakers. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2024-5269.
cve-2024-5269
cves
use
code

Social Media

[CVE-2024-5269: 8.8/HIGH] Critical vulnerability in Sonos Era 100 allows remote code execution. Attackers can exploit SMB2 messages without authentication, executing code on speakers. Advisory: ZDI-CAN-22459. https://t.co/vKX4jymwpt
0
0
0
[ZDI-24-545|CVE-2024-5269] (Pwn2Own) Sonos Era 100 SMB2 Message Handling Use-After-Free Remote Code Execution Vulnerability (CVSS 8.8; Credit: [email protected] + Tri from Team Orca of Sea Security) https://t.co/VRAjHLvyix
0
0
0

Affected Software

Configuration 1
TypeVendorProduct
OSSonosera_100_firmware

References

ReferenceLink
[email protected]https://www.zerodayinitiative.com/advisories/ZDI-24-545/

CWE Details

CWE IDCWE NameDescription
CWE-416Use After FreeReferencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence