Lucene search
K

9 matches found

NVD
NVD
added 2025/12/30 11:15 p.m.3 views

CVE-2025-15111

Ksenia Security lares legacy model version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access. Attackers can exploit the weak default administrative credentials to obtain full control of the home automation system...

9.8CVSS0.0053EPSS
Exploits2References4
CVE
CVE
added 2025/12/30 10:41 p.m.18 views

CVE-2025-15112

Ksenia Security Lares 4.0 Home Automation 1.6 contains a URL redirection vulnerability in the cmdOk.xml script. The issue arises from accepting and manipulating the redirectPage GET parameter, enabling an attacker to craft links that redirect authenticated users to arbitrary websites when the use...

5.4CVSS5.7AI score0.00234EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/30 10:41 p.m.4 views

CVE-2025-15112 Ksenia Security lares Home Automation 1.6 URL Redirection Vulnerability

Ksenia Security lares legacy model version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' script that allows attackers to manipulate the 'redirectPage' GET parameter. Attackers can craft malicious links that redirect authenticated users to arbitrary websites when clicking on a...

5.4CVSS5.7AI score0.00234EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/30 10:41 p.m.27 views

CVE-2025-15112 Ksenia Security lares Home Automation 1.6 URL Redirection Vulnerability

Ksenia Security lares legacy model version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' script that allows attackers to manipulate the 'redirectPage' GET parameter. Attackers can craft malicious links that redirect authenticated users to arbitrary websites when clicking on a...

5.4CVSS0.00234EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/30 10:41 p.m.5 views

CVE-2025-15111 Ksenia Security lares Home Automation 1.6 Default Credentials Vulnerability

Ksenia Security lares legacy model version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access. Attackers can exploit the weak default administrative credentials to obtain full control of the home automation system...

9.8CVSS5.5AI score0.0053EPSS
Exploits2References4
Cvelist
Cvelist
added 2025/12/30 10:41 p.m.30 views

CVE-2025-15111 Ksenia Security lares Home Automation 1.6 Default Credentials Vulnerability

Ksenia Security lares legacy model version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access. Attackers can exploit the weak default administrative credentials to obtain full control of the home automation system...

9.8CVSS0.0053EPSS
Exploits2References4
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.6 views

Ksenia Security Lares 4.0 Home Automation 安全漏洞

Ksenia Security Lares 4.0 Home Automation is an intelligent security and home automation control platform from Ksenia Security, Italy. A security vulnerability exists in Ksenia Security Lares 4.0 Home Automation version 1.6, which stems from the exposure of the alarm system PIN in the baseInfo XM...

9.8CVSS6.8AI score0.00505EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2025/04/01 12:0 a.m.347 views

Ksenia Security Lares 4.0 Default Credentials

Ksenia Security Lares version 4.0 uses a weak set of default administrative credentials that can be found and used to gain full control of the system. Exploit Title: Ksenia Security Lares 4.0 Home Automation Default Credentials Google Dork: N/A Date: 31 March 2025 Exploit Author: Mencha 'ShadeLoc...

7.6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/07/03 12:0 a.m.9 views

PT-2025-54259

Name of the Vulnerable Software and Affected Versions Ksenia Security Lares 4.0 Home Automation version 1.6 Description Ksenia Security Lares 4.0 Home Automation version 1.6 has a default credentials issue that allows unauthorized access to administrative functions. Successful exploitation grants...

10CVSS6.7AI score0.0053EPSS
Exploits2References11
Rows per page
Query Builder