Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Echo_spot_firmware
(Amazon)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 1 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-05-30 | CVE-2018-11567 | Prior to 2018-04-27, the reprompt feature in Amazon Echo devices could be misused by a custom Alexa skill. The reprompt feature is designed so that if Alexa does not receive an input within 8 seconds, the device can speak a reprompt, then wait an additional 8 seconds for input; if the user still does not respond, the microphone is then turned off. The vulnerability involves empty output-speech reprompts, custom wildcard ("gibberish") input slots, and logging of detected speech. If a... | Echo_dot_firmware, Echo_firmware, Echo_plus_firmware, Echo_show_firmware, Echo_spot_firmware | 3.3 |