Vulnerabilities for Smarthome (...) - CXSECURITY.COM

Vulnerabilities for 'Smarthome'

2019-08-28

CVE-2019-11063

CWE-284

A broken access control vulnerability in SmartHome app (Android versions up to 3.0.42_190515, ios versions up to 2.0.22) allows an attacker in the same local area network to list user accounts and control IoT devices that connect with its gateway (HG100) via http://[target]/smarthome/devicecontrol without any authentication. CVSS 3.0 base score 10 (Confidentiality, Integrity and Availability impacts). CVSS vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).

>>> Vendor: ASUS 91 Products

Video security online

Rt-n56u firmware

Ipswcom activex component

Rt-ac66u firmware

Rt-n14u firmware

Rt-n16 firmware

Rt-n65u firmware

Rt-n66u firmware

Rt-n10e firmware

Rt-ac68u firmware

Rt series firmware

Rt-ac56s firmware

Rt-ac87u firmware

Rt-n10+d1 firmware

Rt-g32 firmware

Wl-330nul firmware

Wl-33nul firmware

Tm-ac1900 firmware

Rt-ac53 firmware

Rt-ac1750 firmware

Dsl-n10s firmware

Dsl-ac51 firmware

Dsl-ac52u firmware

Dsl-ac55u firmware

Dsl-ac56u firmware

Dsl-ac750 firmware

Dsl-n10 c1 firmware

Dsl-n12e c1 firmware

Dsl-n12u c1 firmware

Dsl-n14u-b1 firmware

Dsl-n14u firmware

Dsl-n16 firmware

Dsl-n16u firmware

Dsl-n17u firmware

Dsl-n55u c1 firmware

Dsl-n55u d1 firmware

Dsl-n66u firmware

Rt-ac1200 firmware

Rt-ac2900 firmware

Rt-ac51u firmware

Rt-ac52u b1 firmware

Rt-ac55u firmware

Rt-ac55uhp firmware

Rt-ac58u firmware

Rt-ac86u firmware

Rt-acrh13 firmware

Rt-n12 d1 firmware

Rt-n600 firmware

Ea-n66 firmware

Rp-ac52 firmware

Rp-ac56 firmware

Rp-n12 firmware

Rp-n14 firmware

Rp-n53 firmware

Wmp-n12 firmware

Gt-ac5300 firmware

Zenfone 3 max firmware

Aura sync firmware

Zenfone v live firmware

Rt-ac3200 firmware

Precision touchpad

Armoury crate lite service

Rog live service

Copyright 2024, cxsecurity.com