What is CVE-2026-55844?

CVE-2026-55844 is a high-severity vulnerability in Home-assistant Core, classified under Cleartext Transmission of Sensitive Information. CVSS score: 7.5/10. Published 2026-06-29.

How severe is CVE-2026-55844?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Home-assistant Core

CVE-2026-55844

Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2025.5.0, The iOS companion app ignores the SSID allowlist for internal networks. The app uses SSID to detect when to use the intern…

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Home-assistant Core — versions < 2025.5.0

Weakness classification (CWE)

CWE-319 — Cleartext Transmission of Sensitive Information

References

security-advisories@github.com (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2026-55844?: CVE-2026-55844 is a high-severity vulnerability in Home-assistant Core, classified under Cleartext Transmission of Sensitive Information. CVSS score: 7.5/10. Published 2026-06-29.
How severe is CVE-2026-55844?: High severity. CVSS v3 base score is 7.5 out of 10.