Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

eq-3 homematic ccu3 firmware 3.41.11 vulnerabilities and exploits

(subscribe to this query)
8.8
CVSSv3

CVE-2019-15850

eQ-3 HomeMatic CCU3 firmware version 3.41.11 allows Remote Code Execution in the ReGa.runScript method. An authenticated attacker can easily execute code and compromise the system.
Eq-3 Homematic Ccu3 Firmware 3.41.11
8.2
CVSSv3

CVE-2019-9583

eQ-3 Homematic CCU2 and CCU3 obtain session IDs without login. This allows a Denial of Service and is a starting point for other attacks. Affected versions for CCU2: 2.35.16, 2.41.5, 2.41.8, 2.41.9, 2.45.6, 2.45.7, 2.47.10, 2.47.12, 2.47.15. Affected versions for CCU3: 3.41.11, 3...
Eq-3 Homematic Ccu3 Firmware 3.41.11Eq-3 Homematic Ccu3 Firmware 3.43.16Eq-3 Homematic Ccu3 Firmware 3.45.5Eq-3 Homematic Ccu3 Firmware 3.45.7Eq-3 Homematic Ccu3 Firmware 3.47.10Eq-3 Homematic Ccu3 Firmware 3.47.15Eq-3 Homematic Ccu2 Firmware -Eq-3 Homematic Ccu2 Firmware 2.35.16Eq-3 Homematic Ccu2 Firmware 2.41.5Eq-3 Homematic Ccu2 Firmware 2.41.8Eq-3 Homematic Ccu2 Firmware 2.41.9Eq-3 Homematic Ccu2 Firmware 2.45.6Eq-3 Homematic Ccu2 Firmware 2.45.7Eq-3 Homematic Ccu2 Firmware 2.47.10Eq-3 Homematic Ccu2 Firmware 2.47.12Eq-3 Homematic Ccu2 Firmware 2.47.15
9.8
CVSSv3

CVE-2019-14985

eQ-3 Homematic CCU2 and CCU3 with the CUxD AddOn installed allow Remote Code Execution by unauthenticated attackers with access to the web interface, because this interface can access the CMD_EXEC virtual device type 28.
Eq-3 Homematic Ccu2 Firmware 2.35.16Eq-3 Homematic Ccu2 Firmware 2.41.5Eq-3 Homematic Ccu2 Firmware 2.41.8Eq-3 Homematic Ccu2 Firmware 2.41.9Eq-3 Homematic Ccu2 Firmware 2.45.6Eq-3 Homematic Ccu2 Firmware 2.45.7Eq-3 Homematic Ccu2 Firmware 2.47.10Eq-3 Homematic Ccu2 Firmware 2.47.12Eq-3 Homematic Ccu2 Firmware 2.47.15Eq-3 Homematic Ccu3 Firmware 3.41.11Eq-3 Homematic Ccu3 Firmware 3.43.16Eq-3 Homematic Ccu3 Firmware 3.45.5Eq-3 Homematic Ccu3 Firmware 3.45.7Eq-3 Homematic Ccu3 Firmware 3.47.10Eq-3 Homematic Ccu3 Firmware 3.47.15
7.3
CVSSv3

CVE-2019-15849

eQ-3 HomeMatic CCU3 firmware 3.41.11 allows session fixation. An attacker can create session IDs and send them to the victim. After the victim logs in to the session, the attacker can use that session. The attacker could create SSH logins after a valid session and easily compromi...
Eq-3 Homematic Ccu3 Firmware 3.14.11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884CVE-2024-6003remotebrute forceinformation disclosureCVE-2024-27801CVE-2024-30078CVE-2024-31870CVE-2024-6042
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook