Eq-3: >> Cux-Daemon >> 1.12 Security Vulnerabilities
A Remote Code Execution (RCE) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to execute system commands as root remotely via a simple HTTP request.
CVSS Score
8.8
EPSS Score
0.102
Published
2019-10-17
A Local File Inclusion (LFI) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to read sensitive files via a simple HTTP Request.
CVSS Score
6.5
EPSS Score
0.003
Published
2019-10-17