CVE-2026-32112

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-32112
ha-mcp is a Home Assistant MCP Server. Prior to 7.0.0, the ha-mcp OAuth consent form renders user-controlled parameters via Python f-strings with no HTML escaping. An attacker who can reach the OAuth endpoint and convince the server operator to follow a crafted authorization URL could execute JavaScript in the operator's browser. This affects only users running the beta OAuth mode (ha-mcp-oauth), which is not part of the standard setup and requires explicit configuration. This vulnerability is fixed in 7.0.0.

6.8 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://github.com/homeassistant-ai/ha-mcp/security/advisories/GHSA-pf93-j98v-25pv Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:homeassistant-ai:home_assistant_mcp_server:*:*:*:*:*:*:*:*
History

17 Mar 2026, 15:39

Type Values Removed Values Added
First Time Homeassistant-ai
Homeassistant-ai home Assistant Mcp Server
Summary
  • (es) ha-mcp es un servidor MCP de Home Assistant. Antes de la versión 7.0.0, el formulario de consentimiento OAuth de ha-mcp renderiza parámetros controlados por el usuario a través de f-strings de Python sin escape HTML. Un atacante que pueda alcanzar el endpoint OAuth y convencer al operador del servidor de seguir una URL de autorización manipulada podría ejecutar JavaScript en el navegador del operador. Esto afecta solo a los usuarios que ejecutan el modo OAuth beta (ha-mcp-oauth), que no forma parte de la configuración estándar y requiere configuración explícita. Esta vulnerabilidad está corregida en la versión 7.0.0.
CPE cpe:2.3:a:homeassistant-ai:home_assistant_mcp_server:*:*:*:*:*:*:*:*
References () https://github.com/homeassistant-ai/ha-mcp/security/advisories/GHSA-pf93-j98v-25pv - () https://github.com/homeassistant-ai/ha-mcp/security/advisories/GHSA-pf93-j98v-25pv - Vendor Advisory

11 Mar 2026, 21:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-03-11 21:16

Updated : 2026-03-17 15:39

NVD link : CVE-2026-32112

Mitre link : CVE-2026-32112

CVE.ORG link : CVE-2026-32112

JSON object : View

Products Affected

homeassistant-ai

  • home_assistant_mcp_server
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')