Vulnerabilities > Home Assistant > Home Assistant Companion > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-19 | CVE-2023-41898 | Code Injection vulnerability in Home-Assistant Home Assistant Companion Home assistant is an open source home automation. | 7.8 |
| 2023-10-19 | CVE-2023-44385 | Cross-Site Request Forgery (CSRF) vulnerability in Home-Assistant Home Assistant Companion The Home Assistant Companion for iOS and macOS app up to version 2023.4 are vulnerable to Client-Side Request Forgery. | 8.8 |