CVE-2017-6520

Name of the Vulnerable Software and Affected Versions BOSE Soundtouch 30 (affected versions not specified)

Description The issue concerns the Multicast DNS (mDNS) responder in the BOSE Soundtouch 30, which incorrectly responds to IPv4 unicast queries from non-link-local source addresses. This behavior allows remote attackers to potentially cause a denial of service through traffic amplification or obtain sensitive information by sending UDP packets to port 5353.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.