CVE-2026-34205 in home-assistantinformation

Résumé (Anglaise)

Home Assistant is open source home automation software that puts local control and privacy first. Home Assistant apps (formerly add-ons) configured with host network mode expose unauthenticated endpoints bound to the internal Docker bridge interface to the local network. On Linux, this configuration does not restrict access to the app as intended, allowing any device on the same network to reach these endpoints without authentication. Home Assistant Supervisor 2026.03.02 addresses the issue.

Responsable

GitHub_M

Réserver

26/03/2026

Divulgation

27/03/2026

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
354056	home-assistant Internal Docker Bridge Exécution de code à distance	923	Non défini	Non défini	CVE-2026-34205

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

◂ PrécédentAperçuSuivant ▸

Want to know what is going to be exploited?

We predict KEV entries!