A Remote Code Execution (RCE) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated malicious users to execute system commands as root remotely via a simple HTTP request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eq-3 cux-daemon |
||
eq-3 ccu2_firmware |