Chris Hein

**Name of the Vulnerable Software and Affected Versions** Tomedo Server version 1.7.3 **Description** The issue concerns the communication between the Customer's Tomedo Server and the Vendor Tomedo Server, which occurs over HTTP in cleartext. This makes it possible for unauthorized actors to intercept the communication. The use of basic authentication allows attackers to base64 decode the intercepted credentials, potentially revealing the `username` and `password`. **Recommendations** For Tomedo Server version 1.7.3, consider disabling the use of basic authentication over HTTP until a secure alternative, such as HTTPS, can be implemented to encrypt the communication and protect the credentials. As a temporary workaround, restrict access to the Tomedo Server to minimize the risk of unauthorized interception.

**Name of the Vulnerable Software and Affected Versions** Bose Soundtouch app version 18.1.4 **Description** An issue in the Bose Soundtouch app allows for the execution of JavaScript on a registered Bose User Account if a speaker has been connected to the app. This is possible due to the lack of frontend input validation of the device name, which can be exploited by using a malicious device name. **Recommendations** For Bose Soundtouch app version 18.1.4, consider restricting the use of the device name feature until a patch is available to prevent potential JavaScript execution on the registered Bose User Account. At the moment, there is no information about a newer version that contains a fix for this issue.