Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16 matches found

RedhatCVE
RedhatCVEadded 2026/01/07 9:31 a.m.5 views

CVE-2019-16199

eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18 allow Remote Code Execution by unauthenticated attackers with access to the web interface via an HTTP POST request to certain URLs related to the ReGa core process...

9.8CVSS7.8AI score0.45791EPSS
Exploits1References1
CNVD
CNVDadded 2020/05/18 12:0 a.m.1 views

Unspecified Vulnerabilities in eQ-3 Homematic CCU2 and CCU3

The eQ-3 Homematic CCU3 and eQ-3 HomeMatic CCU2 are both central control units for a smart home system from eQ-3 Germany. A security vulnerability exists in eQ-3 Homematic CCU2 version 2.51.6 and earlier and CCU3 version 3.51.6 and earlier, which stems from turning on the default automatic login...

9.8CVSS7.3AI score0.45806EPSS
Exploits1References1
OSV
OSVadded 2019/10/17 2:15 p.m.1 views

CVE-2019-15850

eQ-3 HomeMatic CCU3 firmware version 3.41.11 allows Remote Code Execution in the ReGa.runScript method. An authenticated attacker can easily execute code and compromise the system...

8.8CVSS7.5AI score0.04315EPSS
Exploits1References2
OSV
OSVadded 2019/09/17 9:15 p.m.1 views

CVE-2019-16199

eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18 allow Remote Code Execution by unauthenticated attackers with access to the web interface via an HTTP POST request to certain URLs related to the ReGa core process...

9.8CVSS5.9AI score0.45791EPSS
Exploits1References1
NVD
NVDadded 2019/09/17 9:15 p.m.10 views

CVE-2019-16199

eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18 allow Remote Code Execution by unauthenticated attackers with access to the web interface via an HTTP POST request to certain URLs related to the ReGa core process...

9.8CVSS9.8AI score0.45791EPSS
Exploits1References1
Prion
Prionadded 2019/09/17 9:15 p.m.14 views

Remote code execution

eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18 allow Remote Code Execution by unauthenticated attackers with access to the web interface via an HTTP POST request to certain URLs related to the ReGa core process...

7.5CVSS9.7AI score0.45791EPSS
Exploits1References1Affected Software2
CVE
CVEadded 2019/09/17 8:53 p.m.107 views

CVE-2019-16199

CVE-2019-16199 affects eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18. The issue enables Remote Code Execution by unauthenticated attackers who can reach the device’s web interface and issue an HTTP POST to URLs related to the ReGa core process. The Red Hat/NVD entries corroborate una...

9.8CVSS9.6AI score0.45791EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2019/09/17 8:53 p.m.12 views

CVE-2019-16199

eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18 allow Remote Code Execution by unauthenticated attackers with access to the web interface via an HTTP POST request to certain URLs related to the ReGa core process...

9.8AI score0.45791EPSS
Exploits1References1
CNVD
CNVDadded 2019/08/08 12:0 a.m.1 views

eQ-3 Homematic CCU3 Input Validation Error Vulnerability

The eQ-3 Homematic CCU3 is a central control unit for smart home systems from eQ-3 Germany. An input validation error vulnerability exists in the 'Call' function of the ReGa core logic process in eQ-3 Homematic CCU3 3.47.15 and earlier versions, which can be exploited by an attacker to cause a...

7.5CVSS6.7AI score0.00218EPSS
Exploits1References1
OSV
OSVadded 2019/08/07 6:15 p.m.2 views

CVE-2019-14474

eQ-3 Homematic CCU3 3.47.15 and prior has Improper Input Validation in function 'Call' of ReGa core logic process, resulting in the ability to start a Denial of Service. Due to Improper Authorization an attacker can obtain a session ID from CVE-2019-9583 or a valid guest/user/admin account can...

7.5CVSS7.1AI score0.00218EPSS
Exploits1References1
Prion
Prionadded 2019/08/07 6:15 p.m.23 views

Authorization

eQ-3 Homematic CCU3 3.47.15 and prior has Improper Input Validation in function 'Call' of ReGa core logic process, resulting in the ability to start a Denial of Service. Due to Improper Authorization an attacker can obtain a session ID from CVE-2019-9583 or a valid guest/user/admin account can...

5CVSS7.6AI score0.00218EPSS
Exploits2References1Affected Software1
Cvelist
Cvelistadded 2019/08/07 5:12 p.m.13 views

CVE-2019-14474

eQ-3 Homematic CCU3 3.47.15 and prior has Improper Input Validation in function 'Call' of ReGa core logic process, resulting in the ability to start a Denial of Service. Due to Improper Authorization an attacker can obtain a session ID from CVE-2019-9583 or a valid guest/user/admin account can...

7.6AI score0.00218EPSS
Exploits1References1
CVE
CVEadded 2019/08/07 5:12 p.m.58 views

CVE-2019-14474

CVE-2019-14474 affects eQ-3 Homematic CCU3 (3.47.15 and earlier) with an input validation flaw in the ReGa core logic Call() that allows a Denial of Service. The issue arises from improper authorization; an attacker can start the attack after obtaining a session ID (from CVE-2019-9583) or via a v...

7.5CVSS7.4AI score0.00218EPSS
Exploits1References1Affected Software1
OSV
OSVadded 2019/07/10 12:15 p.m.1 views

CVE-2019-10122

eQ-3 HomeMatic CCU2 devices before 2.41.9 and CCU3 devices before 3.43.16 have buffer overflows in the ReGa ise GmbH HTTP-Server 2.0 component, aka HMCCU-179. This may lead to remote code execution...

9.8CVSS7.8AI score
Exploits0References2
Prion
Prionadded 2019/07/10 12:15 p.m.15 views

Buffer overflow

eQ-3 HomeMatic CCU2 devices before 2.41.9 and CCU3 devices before 3.43.16 have buffer overflows in the ReGa ise GmbH HTTP-Server 2.0 component, aka HMCCU-179. This may lead to remote code execution...

7.5CVSS9.7AI score0.03506EPSS
Exploits0References2Affected Software2
CVE
CVEadded 2019/07/10 11:56 a.m.49 views

CVE-2019-10122

CVE-2019-10122 affects eQ-3 HomeMatic CCU2 (firmware < 2.41.9) and CCU3 (firmware

9.8CVSS9.8AI score0.03506EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder