Vulnerabilities > Home Assistant

DATE CVE VULNERABILITY TITLE RISK
2023-12-15 CVE-2023-50715 Unspecified vulnerability in Home-Assistant
Home Assistant is open source home automation software.
low complexity
home-assistant
4.3
2023-10-20 CVE-2023-41893 Unspecified vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant
5.4
2023-10-20 CVE-2023-41894 Unspecified vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant
5.3
2023-10-19 CVE-2023-41895 Cross-site Scripting vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant CWE-79
critical
9.6
2023-10-19 CVE-2023-41896 Insufficient Verification of Data Authenticity vulnerability in Home-Assistant Home-Assistant-Js-Websocket
Home assistant is an open source home automation.
network
low complexity
home-assistant CWE-345
critical
9.0
2023-10-19 CVE-2023-41897 Improper Restriction of Rendered UI Layers or Frames vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant CWE-1021
critical
9.6
2023-10-19 CVE-2023-41898 Code Injection vulnerability in Home-Assistant Home Assistant Companion
Home assistant is an open source home automation.
local
low complexity
home-assistant CWE-94
7.8
2023-10-19 CVE-2023-41899 Server-Side Request Forgery (SSRF) vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant CWE-918
7.2
2023-10-19 CVE-2023-44385 Cross-Site Request Forgery (CSRF) vulnerability in Home-Assistant Home Assistant Companion
The Home Assistant Companion for iOS and macOS app up to version 2023.4 are vulnerable to Client-Side Request Forgery.
network
low complexity
home-assistant CWE-352
8.8
2023-03-08 CVE-2023-27482 Improper Authentication vulnerability in Home-Assistant Supervisor
homeassistant is an open source home automation tool.
network
low complexity
home-assistant CWE-287
critical
10.0