Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm News
Packet Storm Newsadded 2026/05/12 12:0 a.m.4 views

Behavioral Integrity Verification for AI Agent Skills

Agent skills extend LLM agents with privileged third-party capabilities such as filesystem access, credentials, network calls, and shell execution. Existing safety work catches malicious prompts and risky runtime actions, but the skill artifact itself goes unverified. We formalize this as the...

5.9AI score
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-30449

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.07447EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 12:8 a.m.6 views

CVE-2022-25809

Improper Neutralization of audio output from 3rd and 4th Generation Amazon Echo Dot devices allows arbitrary voice command execution on these devices via a malicious skill in the case of remote attackers or by pairing a malicious Bluetooth device in the case of physically proximate attackers, aka...

9.8CVSS7.5AI score0.07447EPSS
Exploits1References1
NVD
NVDadded 2022/02/24 3:15 p.m.15 views

CVE-2022-25809

Improper Neutralization of audio output from 3rd and 4th Generation Amazon Echo Dot devices allows arbitrary voice command execution on these devices via a malicious skill in the case of remote attackers or by pairing a malicious Bluetooth device in the case of physically proximate attackers, aka...

9.8CVSS0.07447EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2022/02/24 3:15 p.m.1 views

CVE-2022-25809

Improper Neutralization of audio output from 3rd and 4th Generation Amazon Echo Dot devices allows arbitrary voice command execution on these devices via a malicious skill in the case of remote attackers or by pairing a malicious Bluetooth device in the case of physically proximate attackers, aka...

9.8CVSS7.5AI score0.07447EPSS
Exploits1References2
Prion
Prionadded 2022/02/24 3:15 p.m.18 views

Input validation

Improper Neutralization of audio output from 3rd and 4th Generation Amazon Echo Dot devices allows arbitrary voice command execution on these devices via a malicious skill in the case of remote attackers or by pairing a malicious Bluetooth device in the case of physically proximate attackers, aka...

9CVSS9.6AI score0.07447EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2022/02/23 12:0 a.m.2 views

PT-2022-17534 · Amazon · Amazon Echo Dot

Name of the Vulnerable Software and Affected Versions: Amazon Echo Dot devices, 3rd and 4th Generation Description: The issue allows for arbitrary voice command execution on affected devices. This can be achieved by a remote attacker using a malicious skill or by a physically proximate attacker...

9.8CVSS9.6AI score0.07447EPSS
Exploits1References2
The Hacker News
The Hacker Newsadded 2018/04/26 3:58 p.m.71 views

Amazon Alexa Has Got Some Serious Skills—Spying On Users!

"Alexa, are you spying on me?" — aaaa.....mmmm.....hmmm.....maybe!!! Security researchers have developed a new malicious 'skill' for Amazon's popular voice assistant Alexa that can turn your Amazon Echo into a full-fledged spying device. Amazon Echo is an always-listening voice-activated smart ho...

0.6AI score
Exploits0
Rows per page
Query Builder