← back
CVE-2021-45099

CVE-2021-45099

EPSS 1.3%
The addon.stdin service in addon-ssh (aka Home Assistant Community Add-on: SSH & Web Terminal) before 10.0.0 has an attack surface that requires social engineering. NOTE: the vendor does not agree that this is a vulnerability; however, addon.stdin was removed as a defense-in-depth measure against complex social engineering situations
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gist.github.com/Eriner/0872628519f70556d2c26c83439a9f67https://github.com/hassio-addons/addon-ssh/releases/tag/v10.0.0