Lucene search
+L

154 matches found

CNNVD
CNNVD
added 2025/12/30 12:0 a.m.6 views

Ksenia Security Lares 4.0 Home Automation 信任管理问题漏洞

Ksenia Security Lares 4.0 Home Automation is an intelligent security and home automation control platform from Ksenia Security, Italy. A trust management issue vulnerability exists in Ksenia Security Lares 4.0 Home Automation version 1.6, which stems from default credentials and could allow an...

9.8CVSS6.9AI score0.0053EPSS
Exploits2References4
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.7 views

Ksenia Security Lares 4.0 Home Automation 安全漏洞

Ksenia Security Lares 4.0 Home Automation is an intelligent security and home automation control platform from Ksenia Security, Italy. A security vulnerability exists in Ksenia Security Lares 4.0 Home Automation version 1.6, which stems from the exposure of the alarm system PIN in the baseInfo XM...

9.8CVSS6.8AI score0.00505EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.7 views

AVE DOMINAplus 安全漏洞

AVE DOMINAplus is an application from AVE Italy. The best home automation system for next generation houses. A security vulnerability exists in AVE DOMINAplus version 1.10.x, which stems from vulnerability to cross-site request forgery and cross-site scripting attacks that could lead to the...

5.3CVSS6.4AI score0.00174EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-14764

Malware in sbrugna...

6.1CVSS6.3AI score0.01319EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-14755

Malware in sbrugna...

8.8CVSS8.6AI score0.00748EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-2936

Malware in sbrugna...

6.8CVSS6.4AI score0.0066EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2013-6749

Malware in sbrugna...

7.8CVSS6.4AI score0.01632EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-4811

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-2658

Malicious code in bioql PyPI...

10CVSS6.4AI score0.01035EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-46373

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00423EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-2477

Malicious code in bioql PyPI...

9.1CVSS6.4AI score0.00523EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/08/16 12:0 a.m.5 views

Invitation Is All You Need! Promptware Attacks against LLM-Powered Assistants in Production Are Practical and Dangerous

The growing integration of LLMs into applications has introduced new security risks, notably known as Promptware - maliciously engineered prompts designed to manipulate LLMs to compromise the CIA triad of these applications. While prior research warned about a potential shift in the threat...

7AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2025/07/31 12:0 a.m.268 views

Ilevia EVE X1 Server 4.7.18.0.eden (db_log) Pre-Auth File Disclosure

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

8.7CVSS5.9AI score0.00793EPSS
Exploits1
CISA
CISA
added 2025/06/03 12:0 p.m.3 views

CISA Releases Three Industrial Control Systems Advisories

CISA released three Industrial Control Systems ICS advisories on June 3, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-153-01 Schneider Electric Wiser Home Automation ICSA-25-153-02 Schneider Electric...

7AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:48 p.m.9 views

CVE-2020-21987

HomeAutomation 3.3.2 is affected by persistent Cross Site Scripting XSS. XSS vulnerabilities occur when input passed via several parameters to several scripts is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's...

6.1CVSS6.3AI score0.00905EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/05/22 3:19 p.m.10 views

CVE-2020-22001

HomeAutomation 3.3.2 suffers from an authentication bypass vulnerability when spoofing client IP address using the X-Forwarded-For header with the local loopback IP address value allowing remote control of the smart home solution...

9.8CVSS7.3AI score0.03406EPSS
Exploits2
Zero Science Lab
Zero Science Lab
added 2025/03/31 12:0 a.m.312 views

Ksenia Security Lares WebServer Home Automation PIN Logic Flaw

Summary Lares is a burglar alarm & home automation system that can be controlled by means of an ergo LCD keyboard, as well as remotely by telephone, and even via the Internet through a built-in WEB server. Description The Ksenia home automation and burglar alarm system has a security flaw where t...

9.8CVSS5.8AI score0.00505EPSS
Exploits1
EUVD
EUVD
added 2024/08/09 6:12 p.m.9 views

EUVD-2024-2569

openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. Prior to version 4.2.1, CometVisu's file system endpoints don't require authentication and additionally the endpoint to update an existing file is susceptible to path traversal...

9.8CVSS7.3AI score0.01211EPSS
Exploits0References4
OSV
OSV
added 2024/08/09 6:6 p.m.18 views

CVE-2024-42467 CometVisu Backend for openHAB affected by SSRF/XSS

openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. Prior to version 4.2.1, the proxy endpoint of openHAB's CometVisu add-on can be accessed without authentication. This proxy-feature can be exploited as Server-Side Request Forger...

10CVSS6.7AI score0.01035EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/07/03 12:0 a.m.11 views

PT-2025-54259

Name of the Vulnerable Software and Affected Versions Ksenia Security Lares 4.0 Home Automation version 1.6 Description Ksenia Security Lares 4.0 Home Automation version 1.6 has a default credentials issue that allows unauthorized access to administrative functions. Successful exploitation grants...

10CVSS6.7AI score0.0053EPSS
Exploits2References11
Rows per page
Query Builder