ГлавнаяУязвимости → CVE-2025-15111
9.8критическая

CVE-2025-15111

Описание

Ksenia Security lares (legacy model) version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access. Attackers can exploit the weak default administrative credentials to obtain full control of the home automation system.

Затрагиваемое ПО
Kseniasecurity Lares firmwareKseniasecurity Lares
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://packetstorm.news/files/id/190180/https://www.kseniasecurity.com/https://www.vulncheck.com/advisories/ksenia-security-lares-home-automation-default-credentials-vulnerabilityhttps://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5927.phphttps://www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5927.php