Amazon Alexa software version 8960323972 on Echo Dot 2nd generation and 3rd generation devices potentially allows attackers to deliver security-relevant commands via an audio signal between 16 and 22 kHz (often outside the range of human adult hearing). Commands at these frequencies are essentially never spoken by authorized actors, but a substantial fraction of the commands are successful.
oryginał ENCVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:HAmazon Alexa
OSAmazon8960323972Amazon Echo Dot
HWAmazonwszystkie wersje
Powiązane podatności
Improper Neutralization of audio output from 3rd and 4th Generation Amazon Echo Dot devices allows arbitrary v...
Amazon Echo Dot devices through 2021-07-02 sometimes allow attackers, who have physical access to a device aft...
Prior to 2018-04-27, the reprompt feature in Amazon Echo devices could be misused by a custom Alexa skill. The...
Nieprawidłowa walidacja certyfikatów w Amazon Athena ODBC Driver — atak MITM
Niewystarczające zabezpieczenia uwierzytelniania w Amazon Athena ODBC Driver