home-assistant Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by home-assistant
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Man-in-the-Middle Vulnerability in Home Assistant Core Software
CVE-2025-25305Home-assistantCore7HIGHCross-site Scripting via auth_callback login in Home Assistant Core
CVE-2023-41895Home-assistantCore8.8HIGHFake websocket server installation permits full takeover in Home Assistant Core
CVE-2023-41896Home-assistantCore7.1HIGHLack of XFO header allows clickjacking in Home Assistant Core
CVE-2023-41897Home-assistantCore8.8HIGHArbitrary URL load in Android WebView in `MyActivity.kt` in Home Assistant Companion for Android
CVE-2023-41898Home-assistantCore8.6HIGHClient-Side Request Forgery in Home Assistant iOS/macOS native Apps
CVE-2023-44385Home-assistantCore8.6HIGHAuthentication Bypass in Home Assistant Supervisor by Vendor Home Assistant
CVE-2023-27482Home-assistantCoreEPSS 89%10CRITICALInformation Leak in Home Assistant Operating System and Supervised Versions by Nabu Casa
CVE-2020-36517Home-assistantHome-assistant7.5HIGHInformation Disclosure Vulnerability in Home Assistant by Home Assistant
CVE-2018-21019Home-assistantHome-assistant7.5HIGH
18 February 2025
19 October 2023
8 March 2023
10 March 2022
23 September 2019
No more vulnerabilities to load.