home-assistant
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Unknown |
| Version | Removed |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1488 | 2020.12.2-1 | 2021.1.4-1 | Medium | Fixed | FS#69398 |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-3152 | AVG-1488 | Medium | Yes | Information disclosure | Home Assistant before 2021.1.3 allows attackers to obtain sensitive information because custom integrations with ../ are mishandled leading to directory-traversal. |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 29 Jan 2021 | ASA-202101-44 | AVG-1488 | Medium | information disclosure |