Vulnerabilities > Home Assistant > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-12-15 CVE-2023-50715 Unspecified vulnerability in Home-Assistant
Home Assistant is open source home automation software.
low complexity
home-assistant
4.3
4.3
2023-10-20 CVE-2023-41893 Unspecified vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant
5.4
5.4
2023-10-20 CVE-2023-41894 Unspecified vulnerability in Home-Assistant
Home assistant is an open source home automation.
network
low complexity
home-assistant
5.3
5.3
2021-01-26 CVE-2021-3152 Path Traversal vulnerability in Home-Assistant
Home Assistant before 2021.1.3 does not have a protection layer that can help to prevent directory-traversal attacks against custom integrations.
network
low complexity
home-assistant CWE-22
5.3
5.3
2017-11-10 CVE-2017-16782 Cross-site Scripting vulnerability in Home-Assistant
In Home Assistant before 0.57, it is possible to inject JavaScript code into a persistent notification via crafted Markdown text, aka XSS.
network
low complexity
home-assistant CWE-79
6.1
6.1