CVE-2019-11061

CRITICAL

ASUS HG100 Firmware < 4.00.09 - Unauthenticated IoT Device Control via SmartHome DeviceControl Endpoint

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-11061. PoCs published by tim124058.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2019-11061, which involves broken access control in ASUS SmartHome Gateway HG100. The exploit allows unauthenticated attackers on the same network to enumerate users, devices, and control IoT devices like door locks.

Description

A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network to control IoT devices that connect with itself via http://[target]/smarthome/devicecontrol without any authentication. CVSS 3.0 base score 10 (Confidentiality, Integrity and Availability impacts). CVSS vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).

Exploits (1)

nomisec WORKING POC 23 stars
by tim124058 · poc
https://github.com/tim124058/ASUS-SmartHome-Exploit

This repository contains a functional exploit for CVE-2019-11061, which involves broken access control in ASUS SmartHome Gateway HG100. The exploit allows unauthenticated attackers on the same network to enumerate users, devices, and control IoT devices like door locks.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: ASUS SmartHome Gateway HG100 (Firmware < 4.00.09)
No auth needed
Prerequisites: Network access to the target HG100 or mobile device with the SmartHome app
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory x_refsource_confirm
https://tvn.twcert.org.tw/taiwanvn/TVN-201906003
Third Party Advisory x_refsource_confirm
http://surl.twcert.org.tw/5df6x

Scores

CVSS v3 10.0
EPSS 0.0395
EPSS Percentile 89.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

CWE
CWE-306
Status published
Products (1)
asus/hg100_firmware < 4.00.09
Published Aug 29, 2019
Tracked Since Feb 18, 2026