CNNVD-202512-4131 Information

CNNVD ID

CNNVD-202512-4131

Related CVE

CVE-2025-65713

• CNNVD Published: 2025-12-23

Description (Chinese)

Home Assistant是Home Assistant开源的一套开源的家庭自动化管理系统。该系统主要用于控制家庭自动化设备。 Home Assistant 2025.8.0之前版本存在安全漏洞，该漏洞源于文件路径验证不足，可能导致路径遍历攻击。

Description (English)

Home Assistant is the home Assistant open source home automation management system. The system is primarily used to control household automation equipment. There was a security loophole in the previous version of Home Assistant 2025.8.0, which stemmed from insufficient document routing verification, which could lead to routing attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Home Assistant

Published

2025-12-23

Last Modified

2026-02-24

References

https://gist.github.com/GenoWang/7359360285e0fe21a7a58d10ff71d032 https://github.com/home-assistant/core/pull/150046 https://access.redhat.com/security/cve/cve-2025-65713

Patch

https://github.com/home-assistant/core/releases