Information Disclosure Vulnerability in Home Assistant (CVE-2018-12345)

Information Disclosure Vulnerability in Home Assistant (CVE-2018-12345)

CVE-2018-21019 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Home Assistant before 0.67.0 was vulnerable to an information disclosure that allowed an unauthenticated attacker to read the application's error log via components/api.py.

Learn more about our Api Penetration Testing.