Write up from last years security update

Hasty1 · January 24, 2026, 12:50am

Hello,

I am the security researcher who report the issue described in the notice here.

A write up of what was found and how it could have been exploited is now available.

If you haven't updated to at least 2.4.2.157, please do so now!

I do want to thanks @bobbyD and @gopher.ny for being quick and professional.

sburke781 · January 24, 2026, 12:08pm

As long as I don't have to do any training because I missed a test spam email... That I should have picked up....

sburke781 · January 24, 2026, 12:08pm

And thankyou btw... for taking the time to report and follow up on the risk you identified...

SoundersDude · January 24, 2026, 7:09pm

+1 thank you, and also thank you for interacting with the Hubitat team and empowering them to make a fix before further disclosure!