CVE-2026-40602 | home-assistant-ecosystem home-assistant-cli up to 0.x code injection (GHSA-33qf-q99x-wpm8)

A vulnerability was found in home-assistant-ecosystem home-assistant-cli up to 0.x. It has been declared as critical. Affected by this issue is some unknown functionality. Executing a manipulation can lead to code injection.

This vulnerability is handled as CVE-2026-40602. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More