Critical severity9.1NVD Advisory· Published May 1, 2017· Updated May 13, 2026

CVE-2017-6520

Description

The Multicast DNS (mDNS) responder used in BOSE Soundtouch 30 inadvertently responds to IPv4 unicast queries with source addresses that are not link-local, which allows remote attackers to cause a denial of service (traffic amplification) or obtain potentially sensitive information via port-5353 UDP packets.

Affected products

Bose/Soundtouch 30
cpe:2.3:h:bose:soundtouch_30:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.secfu.net/advisoriesnvdMitigationThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.591
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000