Unrated severityNVD Advisory· Published Dec 30, 2025· Updated Mar 11, 2026
Ksenia Security lares Home Automation 1.6 PIN Exposure Vulnerability
CVE-2025-15114
Description
Ksenia Security lares (legacy model) Home Automation version 1.6 contains a critical security flaw that exposes the alarm system PIN in the 'basisInfo' XML file after authentication. Attackers can retrieve the PIN from the server response to bypass security measures and disable the alarm system without additional authentication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2=1.6+ 1 more
- (no CPE)range: =1.6
- (no CPE)range: 1.6
Patches
Vulnerability mechanics
References
2- www.zeroscience.mk/en/vulnerabilities/ZSL-2025-5929.phpmitretechnical-descriptionexploit
- www.vulncheck.com/advisories/ksenia-security-lares-home-automation-pin-exposure-vulnerabilitymitrethird-party-advisory
News mentions
0No linked articles in our index yet.