Kseniasecurity Lares_firmware

4 CVEs affecting Kseniasecurity Lares_firmware. Latest disclosed: 2025-12-30. Critical: 3, High: 0.

Top CVEs affecting Kseniasecurity Lares_firmware
CVESeverityScorePublishedSummary
CVE-2025-15114Critical9.82025-12-30Ksenia Security lares (legacy model) Home Automation version 1.6 contains a critical security flaw that exposes the alarm system PIN in the 'basisInfo' XML fil…
CVE-2025-15111Critical9.82025-12-30Ksenia Security lares (legacy model) version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access…
CVE-2025-15113Critical9.32025-12-30Ksenia Security lares (legacy model) Home Automation version 1.6 contains an unprotected endpoint vulnerability that allows authenticated attackers to upload M…
CVE-2025-15112Medium5.42025-12-30Ksenia Security lares (legacy model) version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' script that allows attackers to manipulate the 're…