Over 20 million Amazon Echo and Google Home devices running on Android and Linux are vulnerable to attacks via the BlueBorne vulnerability. Both Amazon and Google have issued patches for the affected products, hence today’s disclosure from Armis. Amazon Echo is vulnerable to CVE-2017-1000251 and CVE-170785, while Google Home is vulnerable. Experts warn companies to patch devices to prevent attackers from taking over vulnerable equipment and using it to record nearby conversations or as a pivot point for other more damaging hacks.
Source: https://www.bleepingcomputer.com/news/security/blueborne-vulnerability-also-affects-20mil-amazon-echo-and-google-home-devices/