Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
PyPI/homeassistant — 10 CVEs · VulnScope
pkg:PyPI/
homeassistant
10 total CVEs
HIGH
3
MEDIUM
3
✅ Check your installed version
Check
All known vulnerabilities
HIGH
7.5
CVE-2018-21019
Home Assistant information disclosure vulnerability
from 0, < 0.67.0
HIGH
7.5
CVE-2018-21019
Home Assistant information disclosure vulnerability
from 0, < 0.67.0
HIGH
7.0
CVE-2025-25305
Home Assistant does not correctly validate SSL for outgoing requests in core and used libs
from 0, < 2024.1.6
MEDIUM
4.3
User accounts disclosed to unauthenticated actors on the LAN
from 0, < 2023.12.3
MEDIUM
4.3
Home Assistant vulnerable to account takeover via auth_callback login
from 0, < 2023.9.0
MEDIUM
4.3
Home Assistant vulnerable to account takeover via auth_callback login
from 0, < 2023.9.0
—
Home Assistant has stored XSS in history-graphs
>= 2025.02, < 2026.01
—
Home Assistant has stored XSS in Map-card through malicious device name
>= 2020.02, < 2026.01
—
Home Assistant Core before is vulnerable to Directory Traversal
from 0, < 2025.8.0
—
Home Assistant has Stored XSS vulnerability in Energy dashboard from Energy Entity Name
>= 2025.1.0, < 2025.10.2
CVE-2023-50715
CVE-2023-41893
CVE-2023-41893
CVE-2026-33045
CVE-2026-33044
CVE-2025-65713
CVE-2025-62172