CVE-2023-33248

HIGH 7.6

CVSS Score

7.6

EPSS Score

0.0%

EPSS Percentile

0th

Amazon Alexa software version 8960323972 on Echo Dot 2nd generation and 3rd generation devices potentially allows attackers to deliver security-relevant commands via an audio signal between 16 and 22 kHz (often outside the range of human adult hearing). Commands at these frequencies are essentially never spoken by authorized actors, but a substantial fraction of the commands are successful.

Vendor	n/a
Product	n/a
Published	May 24, 2023
Last Updated	Jan 16, 2025

Stay Ahead of the Next One

Get instant alerts for n/a n/a

Be the first to know when new high vulnerabilities affecting n/a n/a are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

n/a / n/a

n/a

References

NVD ↗ CVE.org ↗ EPSS Data ↗

cios2023.org: https://cios2023.org/papers usenix.org: https://www.usenix.org/system/files/sec23fall-prepub-261-xia-qi.pdf sites.google.com: https://sites.google.com/view/nuitattack/home arxiv.org: https://arxiv.org/abs/2305.10358 github.com: https://github.com/reveondivad/nuance youtu.be: https://youtu.be/3gEc5ZFWIWo