CVE-2021-37436

MEDIUM Year: 2021
CVSS v3 Score
4.2
Medium
CVSS v2 Score
1.9
Low
Weakness Type
NVD-CWE-Other
View all →

Vulnerability Description

Amazon Echo Dot devices through 2021-07-02 sometimes allow attackers, who have physical access to a device after a factory reset, to obtain sensitive information via a series of complex hardware and software attacks. NOTE: reportedly, there were vendor marketing statements about safely removing personal content via a factory reset. Also, the vendor has reportedly indicated that they are working on mitigations.

Related Vulnerabilities

CVE-2017-0066

MEDIUM
CVSS:4.2(Medium)

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is di...

NVD-CWE-Other2017

CVE-2017-0135

MEDIUM
CVSS:4.2(Medium)

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is di...

NVD-CWE-Other2017

CVE-2017-0140

MEDIUM
CVSS:4.2(Medium)

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is di...

NVD-CWE-Other2017

CVE-2017-13675

MEDIUM
CVSS:4.2(Medium)

A denial of service (DoS) attack in Symantec Endpoint Encryption before SEE 11.1.3HF2 allows remote attackers to make a particular machine or network resource unavailable to its intended users by temp...

NVD-CWE-Other2017

CVE-2017-13679

MEDIUM
CVSS:4.2(Medium)

A denial of service (DoS) attack in Symantec Encryption Desktop before SED 10.4.1 MP2HF1 allows remote attackers to make a particular machine or network resource unavailable to its intended users by t...

NVD-CWE-Other2017

CVE-2017-18808

MEDIUM
CVSS:4.2(Medium)

NETGEAR ReadyNAS OS 6 devices running ReadyNAS OS versions prior to 6.8.0 are affected by incorrect configuration of security settings.

NVD-CWE-Other2017