home-assistant

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Open source home automation that puts local control and privacy first
Version 2021.4.6-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1488 2020.12.2-1 2021.1.4-1 Medium Fixed FS#69398
Issue Group Severity Remote Type Description
CVE-2021-3152 AVG-1488 Medium Yes Information disclosure
Home Assistant before 2021.1.3 allows attackers to obtain sensitive information because custom integrations with ../ are mishandled leading to directory-traversal.

Advisories

Date Advisory Group Severity Type
29 Jan 2021 ASA-202101-44 AVG-1488 Medium information disclosure