AVG-1488 log

Package home-assistant
Status Fixed
Severity Medium
Type information disclosure
Affected 2020.12.2-1
Fixed 2021.1.4-1
Current 2021.10.5-1 [community]
Ticket FS#69398
Created Thu Jan 21 19:18:24 2021
Issue Severity Remote Type Description
CVE-2021-3152 Medium Yes Information disclosure
Home Assistant before 2021.1.3 allows attackers to obtain sensitive information because custom integrations with ../ are mishandled leading to directory-traversal.
Date Advisory Package Type
29 Jan 2021 ASA-202101-44 home-assistant information disclosure