Sonos Era 300 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Sonos Era 300 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
- CVE-2026-4149 — CVSS 9.8 (critical): Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute…
- CVE-2025-1051 — CVSS 8.8 (high): Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to…