CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2024/07/29 4:15 p.m.•9 views

CVE-2024-41624

Incorrect access control in Himalaya Xiaoya nano smart speaker romversion 1.6.96 allows a remote attacker to have an unspecified impact...

6.3CVSS0.006EPSS

Cvelist•added 2024/07/29 12:0 a.m.•12 views

CVE-2024-41624

Incorrect access control in Himalaya Xiaoya nano smart speaker romversion 1.6.96 allows a remote attacker to have an unspecified impact...

0.006EPSS

Vulnrichment•added 2024/07/29 12:0 a.m.•7 views

CVE-2024-41624

Incorrect access control in Himalaya Xiaoya nano smart speaker romversion 1.6.96 allows a remote attacker to have an unspecified impact...

7AI score0.006EPSS

Positive Technologies•added 2024/07/29 12:0 a.m.•2 views

PT-2024-29469 · Himalaya · Himalaya Xiaoya Nano Smart Speaker

Name of the Vulnerable Software and Affected Versions: Himalaya Xiaoya nano smart speaker version 1.6.96 Description: The issue is related to incorrect access control, allowing a remote attacker to have an unspecified impact. Recommendations: For version 1.6.96, at the moment, there is no...

6.3CVSS7AI score0.006EPSS

Exploits0References3

CNVD•added 2022/01/28 12:0 a.m.•22 views

Huawei AIS-BW80H-00 Command Injection Vulnerability

Huawei AIS-BW80H-00 is a smart speaker device from Huawei China. Huawei AIS-BW80H-00 is vulnerable to a command injection vulnerability caused by the device's inability to effectively defend against malicious outside interference. A local attacker could exploit the vulnerability to pass specially...

7.8CVSS4.4AI score0.00141EPSS

CNNVD•added 2022/01/26 12:0 a.m.•2 views

Huawei AIS-BW80H-00 命令注入漏洞

7.8CVSS6.1AI score0.00141EPSS

Exploits0References3

Wired Threat Level•added 2021/07/05 2:0 p.m.•51 views

Amazon Echo Dots Store a Wealth of Data—Even After a Reset

Thinking about selling your smart speaker? Be aware that you can't completely delete personal content from the device...

3.5AI score

CNVD•added 2021/02/23 12:0 a.m.•19 views

Huawei AIS-BW80H-00 Input Validation Error Vulnerability

Huawei AIS-BW80H-00 is a smart speaker device from Huawei China. Huawei AIS-BW80H-00 is vulnerable to an input validation error, which could be exploited by an attacker to load a crafted software package onto the device...

6.8CVSS2.2AI score0.00013EPSS

CNNVD•added 2021/02/05 12:0 a.m.•3 views

Huawei AIS-BW80H-00 输入验证错误漏洞

6.8CVSS6.7AI score0.00013EPSS

Wired Threat Level•added 2020/12/28 12:0 p.m.•52 views

How Your Digital Trails Wind Up in the Police’s Hands

Phone calls. Web searches. Location tracks. Smart speaker requests. They’ve become crucial tools for law enforcement, while users often are unaware...

2.2AI score

CNVD•added 2020/07/02 12:0 a.m.•5 views

Unspecified vulnerability in Linkplay firmware

The Anker Zolo Halo is a smart speaker from Anker Philippines. A security vulnerability exists in the Linkplay firmware. An attacker can exploit the vulnerability to execute code...

9.3CVSS7AI score0.00612EPSS

Exploits1

NVD•added 2019/11/29 9:15 p.m.•9 views

CVE-2019-5271

There is an information leak vulnerability in Huawei smart speaker Myna. When the smart speaker is paired with the cloud through Wi-Fi, the speaker incorrectly processes some data. Attackers can exploit this vulnerability to read and modify specific configurations of speakers through a series of...

5.4CVSS5.2AI score0.00077EPSS

Prion•added 2019/11/29 9:15 p.m.•14 views

Information disclosure

4.8CVSS5.2AI score0.00077EPSS

Exploits0References1Affected Software1

CVE•added 2019/11/29 8:16 p.m.•49 views

CVE-2019-5271

CVE-2019-5271 affects Huawei Myna smart speaker. The vulnerability is an information leak arising when the device is paired with the cloud over Wi‑Fi, where data is mishandled during processing, allowing an attacker to read and modify specific configurations via a sequence of operations. Root cau...

5.4CVSS5.2AI score0.00077EPSS

Exploits0References1Affected Software1

CNVD•added 2019/05/20 12:0 a.m.•3 views

Xiaomi Yeelight Smart AI Speaker Access Control Error Vulnerability

Xiaomi Yeelight Smart AI Speaker is a smart speaker from Chinese company Xiaomi Technology Xiaomi. An access control error vulnerability exists in Xiaomi Yeelight Smart AI Speaker version 3.3.100074. The vulnerability stems from a network system or product not properly restricting access to...

7.2CVSS7AI score0.00042EPSS

Exploits1References1

CNVD•added 2019/04/01 12:0 a.m.•1 views

Binary vulnerability in Xiaomi's Xiaoxia MINI smart speaker

Xiaomi Xiao Ai MINI Smart Speaker is a smart speaker product from Xiaomi Technology Company. Xiaomi Xiao-ai MINI Smart Speaker has a binary vulnerability that can be exploited by an attacker to allow the target speaker to receive voice commands...

6.9AI score

CNVD•added 2019/03/12 12:0 a.m.•1 views

Command execution vulnerability in the messagingagent module of Xiaoxi MINI smart speaker

Xiao Ai MINI Smart Speaker is an AI-based speaker that can be connected to the Internet. A command execution vulnerability exists in the messagingagent module of the Xiao-ai MINI smart speaker, which can be exploited by an attacker to remotely execute arbitrary commands to the device from the...

7.8AI score