AVG-1488 log
| Package | home-assistant |
| Status | Fixed |
| Severity | Medium |
| Type | information disclosure |
| Affected | 2020.12.2-1 |
| Fixed | 2021.1.4-1 |
| Current | 1:2024.11.2-1 [extra] |
| Ticket | FS#69398 |
| Created | Thu Jan 21 19:18:24 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-3152 | Medium | Yes | Information disclosure | Home Assistant before 2021.1.3 allows attackers to obtain sensitive information because custom integrations with ../ are mishandled leading to directory-traversal. |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 29 Jan 2021 | ASA-202101-44 | home-assistant | information disclosure |