Vulnerabilities > Home Assistant > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-10-19 CVE-2023-41895 Cross-site Scripting vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant CWE-79
critical
 9.6
9.6
2023-10-19 CVE-2023-41896 Insufficient Verification of Data Authenticity vulnerability in Home-Assistant Home-Assistant-Js-Websocket
Home assistant is an open source home automation.
network
low complexity
home-assistant CWE-345
critical
 9.0
9.0
2023-10-19 CVE-2023-41897 Improper Restriction of Rendered UI Layers or Frames vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant CWE-1021
critical
 9.6
9.6
2023-03-08 CVE-2023-27482 Improper Authentication vulnerability in Home-Assistant Supervisor
homeassistant is an open source home automation tool.
network
low complexity
home-assistant CWE-287
critical
 10.0
10