CVE-2025-15111

216.73.216.233

· Published 30/12/2025 23:15 · Modified 31/12/2025 20:42

Labels: CVE-2025-15111 2025-12-30 CVE-2025-15111 CWE-798 [email protected]

Essential information

Published: 30/12/2025 23:15
Modified: 31/12/2025 20:42
Author: —
Creator: —
CVSS: 9.3 CRITICAL (v3) 9.3 CRITICAL (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

Ksenia Security Lares 4.0 Home Automation version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access. Attackers can exploit the weak default administrative credentials to obtain full control of the home automation system.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
ksenia security / lares	`cpe:2.3:a:ksenia_security:lares:1.6:::::::*`
ksenia security / lares	`cpe:2.3:h:ksenia_security:lares:-:::::::*`