Homematic Ccu3 Firmware@* Security Vulnerabilities and Issues — Homematic Ccu3 Firmware@* CVE List

Lucene search

Eq-3Homematic Ccu3 Firmware*

3 matches found

CVE•added 2019/09/17 9:15 p.m.•101 views

CVE-2019-16199

eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18 allow Remote Code Execution by unauthenticated attackers with access to the web interface via an HTTP POST request to certain URLs related to the ReGa core process.

9.8CVSS9.6AI score0.45806EPSS

CVE•added 2019/08/13 8:15 p.m.•31 views

CVE-2019-14986

eQ-3 Homematic CCU2 and CCU3 with the CUxD AddOn before 2.3.0 installed allow administrative operations by unauthenticated attackers with access to the web interface, because features such as File-Browser and Shell Command (as well as "Set root password") are exposed.

9.3CVSS8.2AI score0.02056EPSS

CVE•added 2019/08/14 9:15 p.m.•30 views

CVE-2019-9585

eQ-3 Homematic CCU2 prior to 2.47.10 and CCU3 prior to 3.47.10 JSON API has Improper Access Control for Interface.***Metadata related operations, resulting in the ability to read, set and deletion of Metadata.

9.8CVSS9.3AI score0.00513EPSS