VYPR

HOME easy

by Smartwares

CVEs (2)

  • CVE-2019-25235CriDec 24, 2025
    risk 0.64cvss 9.8epss 0.00

    Smartwares HOME easy 1.0.9 contains an authentication bypass vulnerability that allows unauthenticated attackers to access administrative web pages by disabling JavaScript. Attackers can navigate to multiple administrative endpoints and to bypass client-side validation and…

  • CVE-2020-21997HigApr 29, 2021
    risk 0.49cvss 7.5epss 0.03

    Smartwares HOME easy <=1.0.9 is vulnerable to an unauthenticated database backup download and information disclosure vulnerability. An attacker could disclose sensitive and clear-text information resulting in authentication bypass, session hijacking and full system control.