{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-34205", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-26T15:57:52.323Z", "datePublished": "2026-03-27T19:41:10.707Z", "dateUpdated": "2026-03-30T19:00:20.406Z"}, "containers": {"cna": {"title": "Home Assistant: Unauthenticated App (Add-on) Endpoints Exposed to Local Network via Host Network Mode", "problemTypes": [{"descriptions": [{"cweId": "CWE-923", "lang": "en", "description": "CWE-923: Improper Restriction of Communication Channel to Intended Endpoints", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.7, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/home-assistant/core/security/advisories/GHSA-gh5m-4m97-c95h", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/home-assistant/core/security/advisories/GHSA-gh5m-4m97-c95h"}], "affected": [{"vendor": "home-assistant", "product": "Home Assistant Operating System", "versions": [{"version": "<= 17.1", "status": "affected"}]}, {"vendor": "home-assistant", "product": "Home Assistant Supervisor", "versions": [{"version": "< 2026.03.2", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-27T19:41:10.707Z"}, "descriptions": [{"lang": "en", "value": "Home Assistant is open source home automation software that puts local control and privacy first. Home Assistant apps (formerly add-ons) configured with host network mode expose unauthenticated endpoints bound to the internal Docker bridge interface to the local network. On Linux, this configuration does not restrict access to the app as intended, allowing any device on the same network to reach these endpoints without authentication. Home Assistant Supervisor 2026.03.02 addresses the issue."}], "source": {"advisory": "GHSA-gh5m-4m97-c95h", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-30T19:00:12.798698Z", "id": "CVE-2026-34205", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-30T19:00:20.406Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-34205", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-26T15:57:52.323Z", "datePublished": "2026-03-27T19:41:10.707Z", "dateUpdated": "2026-03-30T19:00:20.406Z"}, "containers": {"cna": {"title": "Home Assistant: Unauthenticated App (Add-on) Endpoints Exposed to Local Network via Host Network Mode", "problemTypes": [{"descriptions": [{"cweId": "CWE-923", "lang": "en", "description": "CWE-923: Improper Restriction of Communication Channel to Intended Endpoints", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.7, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/home-assistant/core/security/advisories/GHSA-gh5m-4m97-c95h", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/home-assistant/core/security/advisories/GHSA-gh5m-4m97-c95h"}], "affected": [{"vendor": "home-assistant", "product": "Home Assistant Operating System", "versions": [{"version": "<= 17.1", "status": "affected"}]}, {"vendor": "home-assistant", "product": "Home Assistant Supervisor", "versions": [{"version": "< 2026.03.2", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-27T19:41:10.707Z"}, "descriptions": [{"lang": "en", "value": "Home Assistant is open source home automation software that puts local control and privacy first. Home Assistant apps (formerly add-ons) configured with host network mode expose unauthenticated endpoints bound to the internal Docker bridge interface to the local network. On Linux, this configuration does not restrict access to the app as intended, allowing any device on the same network to reach these endpoints without authentication. Home Assistant Supervisor 2026.03.02 addresses the issue."}], "source": {"advisory": "GHSA-gh5m-4m97-c95h", "discovery": "UNKNOWN"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-34205", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-30T19:00:12.798698Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-30T19:00:16.235Z"}}]}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Home Assistant is open source home automation software that puts local control and privacy first. Home Assistant apps (formerly add-ons) configured with host network mode expose unauthenticated endpoints bound to the internal Docker bridge interface to the local network. On Linux, this configuration does not restrict access to the app as intended, allowing any device on the same network to reach these endpoints without authentication. Home Assistant Supervisor 2026.03.02 addresses the issue."}], "id": "CVE-2026-34205", "lastModified": "2026-03-30T13:26:29.793", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 6.0, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-27T20:16:35.360", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/home-assistant/core/security/advisories/GHSA-gh5m-4m97-c95h"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-923"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,17.1]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Home Assistant Operating System", "source": "cna", "vendor": "home-assistant"}, "product": "home-assistant", "vendor": "home-assistant"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,2026.03.2)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Home Assistant Supervisor", "source": "cna", "vendor": "home-assistant"}, "product": "supervisor", "vendor": "home-assistant"}], "analysis": {"en": {"generated_at": "2026-03-27T22:06:11.863605+00:00", "value": {"mitigation_remediation": ["Update Home Assistant Supervisor to version 2026.03.02 or later to eliminate host network mode exposure."], "summary": {"action": "Immediate Patch", "impact": "Unauthenticated access to Home Assistant add-on endpoints from the local network"}, "threat_synthesis": {"affected_systems": "Systems running Home Assistant Operating System with Home Assistant Supervisor prior to the 2026.03.02 update are affected. The vulnerability targets add-ons that use host network mode; any such add-on installed on these systems is vulnerable.", "description_and_impact": "Home Assistant add-ons configured for host network mode expose unsecured endpoints bound to the Docker bridge interface, allowing any device on the same local network to reach them without authentication. The flaw stems from improper isolation of the Docker bridge, categorised as CWE-923, and can lead to unauthorized disclosure or manipulation of data managed by those add-ons.", "risk_and_exploitability": "The CVSS score of 9.7 marks the issue as critical. Exploitation requires no special skills\u2014a device on the same local network can simply connect to the exposed endpoint. Though EPSS data is unavailable, the high score and lack of mitigating controls suggest a high likelihood of exploitation. The vulnerability is not listed in CISA\u2019s KEV catalog."}}}}, "created": "2026-03-29T20:30:24.477590+00:00", "updated": "2026-03-30T07:59:30.461584+00:00", "vendors": ["home-assistant", "home-assistant$PRODUCT$home-assistant", "home-assistant$PRODUCT$supervisor"]}