CVE-2025-43916

Name of the Vulnerable Software and Affected Versions Sonos versions through 2025-04-21

Description The issue concerns the /login/v3/oauth endpoint, which accepts a redirect uri containing userinfo in the authority component. This is inconsistent with RFC 6819 section 5.2.3.5, potentially allowing an authorization code to be sent to an attacker-controlled destination.

Recommendations For versions through 2025-04-21, as a temporary workaround, consider restricting access to the /login/v3/oauth endpoint until a patch is available. Avoid using the redirect uri parameter with userinfo in the authority component in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.