CVE-2019-10120

2019-07-10T12:15:00
ID CVE-2019-10120
Type cve
Reporter cve@mitre.org
Modified 2019-07-17T16:21:00

Description

On eQ-3 HomeMatic CCU2 devices before 2.41.8 and CCU3 devices before 3.43.16, automatic login configuration (aka setAutoLogin) can be achieved by continuing to use a session ID after a logout, aka HMCCU-154.