eQ-3 Homematic CCU2 before 2.47.18 and CCU3 before 3.47.18 allow Remote Code Execution by unauthenticated attackers with access to the web interface via an HTTP POST request to certain URLs related to the ReGa core process.
References
Link | Resource |
---|---|
https://psytester.github.io/CVE-2019-16199/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-09-17T20:53:22
Updated: 2019-09-17T20:53:22
Reserved: 2019-09-09T00:00:00
Link: CVE-2019-16199
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-09-17T21:15:11.163
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-16199
JSON object: View
Redhat Information
No data.
CWE