So… the Era 300 was breached today.
“Dungdm from Viettel Cyber Security took control of a Sonos Era 300 smart speaker using a Use-After-Free (UAF) vulnerability. His successful exploit added $30,000 to his team's earnings”
I have been searching but have not seen any response to this yet. Has anyone heard anything?
Sounds like sloppy coding and poor QC testing.
RET2 Systems' Jack Dates followed with a successful out-of-bounds (OOB) write exploit on the Sonos Era 300 smart speaker, securing $60,000 and 6 points. His exploit allowed full control over the device.
More details will likely be coming as they did for this previous era100 exploit that was far more difficult.
https://www.nccgroup.com/us/research-blog/shooting-yourself-in-the-flags-jailbreaking-the-sonos-era-100/
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.