Vulnerability Allowed Eavesdropping via Sonos Smart Speakers
August 9, 2024 at 05:12AM NCC Group researchers disclosed vulnerabilities in Sonos smart speakers, including a flaw allowing eavesdropping on users (CVE-2023-50809). Exploiting this through Wi-Fi could allow remote code execution and audio recording. Sonos and MediaTek released patches. Additional flaws in secure boot were discovered. Details are available in NCC Group’s whitepaper and accompanying … Read more