CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-24001

Malware in sbrugna...

4.2CVSS4.9AI score0.00092EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-30449

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.07447EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:8 a.m.•6 views

CVE-2022-25809

Improper Neutralization of audio output from 3rd and 4th Generation Amazon Echo Dot devices allows arbitrary voice command execution on these devices via a malicious skill in the case of remote attackers or by pairing a malicious Bluetooth device in the case of physically proximate attackers, aka...

9.8CVSS7.5AI score0.07447EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:21 a.m.•5 views

CVE-2019-15027

The MediaTek Embedded Multimedia Card eMMC subsystem for Android on MT65xx, MT66xx, and MT8163 SoC devices allows attackers to execute arbitrary commands as root via shell metacharacters in a filename under /data, because clearemmcnomediaentry in platform/mt6577/external/meta/emmc/metaclremmc.c...

10CVSS7.9AI score0.02356EPSS

Exploits1References1

NVD•added 2022/02/24 3:15 p.m.•15 views

CVE-2022-25809

9.8CVSS0.07447EPSS

Exploits1References1

Prion•added 2022/02/24 3:15 p.m.•18 views

Input validation

9CVSS9.6AI score0.07447EPSS

Exploits1References1

CVE•added 2022/02/23 2:19 a.m.•165 views

CVE-2022-25809

CVE-2022-25809 affects Amazon Echo Dot devices (3rd and 4th Gen). Root cause: improper neutralization of audio output enables arbitrary voice command execution via a malicious skill (remote) or by pairing a malicious Bluetooth device (physical proximity) in an Alexa-versus-Alexa (AvA) scenario. I...

9.8CVSS9.5AI score0.07447EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2022/02/23 12:0 a.m.•2 views

PT-2022-17534 · Amazon · Amazon Echo Dot

Name of the Vulnerable Software and Affected Versions: Amazon Echo Dot devices, 3rd and 4th Generation Description: The issue allows for arbitrary voice command execution on affected devices. This can be achieved by a remote attacker using a malicious skill or by a physically proximate attacker...

9.8CVSS9.6AI score0.07447EPSS

Exploits1References2

NVD•added 2021/07/24 11:15 p.m.•11 views

CVE-2021-37436

Amazon Echo Dot devices through 2021-07-02 sometimes allow attackers, who have physical access to a device after a factory reset, to obtain sensitive information via a series of complex hardware and software attacks. NOTE: reportedly, there were vendor marketing statements about safely removing...

4.2CVSS0.00092EPSS

Exploits0References4

Prion•added 2021/07/24 11:15 p.m.•16 views

Design/Logic Flaw

1.9CVSS4.3AI score0.00092EPSS

Exploits0References4Affected Software1

Cvelist•added 2021/07/24 10:46 p.m.•14 views

CVE-2021-37436

4.5AI score0.00092EPSS

Exploits0References4

CVE•added 2021/07/24 10:46 p.m.•83 views

CVE-2021-37436

CVE-2021-37436 affects Amazon Echo Dot devices. The connected sources describe a design/logic flaw that, after a factory reset, can let an attacker with physical access extract sensitive information through a sequence of hardware and software attacks. There are no published patch details in the p...

4.2CVSS4.2AI score0.00092EPSS

Exploits0References4Affected Software1

CNNVD•added 2021/07/24 12:0 a.m.•2 views

Amazon Echo Dot 安全漏洞

The Amazon Echo Dot is a voice-activated speaker from Amazon.com. It can be used to play music, control smart home devices, make phone calls, answer questions, set timers and alarms, and more using Alexa. The Amazon Echo Dot suffers from a security vulnerability that allows attackers to gain acce...

4.2CVSS5.2AI score0.00092EPSS

Exploits0References5

NVD•added 2019/08/14 1:15 p.m.•12 views

CVE-2019-15027

10CVSS9.6AI score0.02356EPSS

Exploits1References2

Prion•added 2019/08/14 1:15 p.m.•20 views

Code injection

10CVSS9.4AI score0.02356EPSS

Exploits1References2

Cvelist•added 2019/08/14 12:3 p.m.•15 views

CVE-2019-15027