Sonos Systems Face Critical Security Vulnerabilities
By HiFi Editorial26 November 2025
Key Highlights
Security vulnerabilities in Sonos S1 and S2 systems risk privacy and enable potential malicious microphone access.
Three high-risk flaws (CVE-2025-1048, CVE-2025-1049, CVE-2025-1050) allow malicious code execution via SMB, ID3 tags, and HLS playlists.
Issues affect systems on software versions prior to v16.6 (S2) and v11.15.1 (S1).
Recent developments have unveiled significant security vulnerabilities within Sonos S1 and S2 systems, posing risks to both privacy and device functionality. These flaws stem from inadequate validation of incoming data, potentially allowing malicious code injections. As a result, attackers could exploit these weaknesses to gain unauthorized access to the microphone on devices like the Era 300.
Technical analyses reveal three high-risk vulnerabilities identified by the Zero Day Initiative in collaboration with Sonos. The first issue involves improper handling of SMB data from Windows network shares, allowing operations on non-existent objects (CVE-2025-1048). Additionally, vulnerabilities in processing ID3 tags and HLS playlist data (CVE-2025-1049 and CVE-2025-1050) result in buffer overflows, enabling the execution of injected malicious code. These vulnerabilities affect all Sonos S1 and S2 systems, particularly those running software versions prior to v16.6 and v11.15.1, respectively.
