CVE-2020-12834

Published: May 15, 2020Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

eQ-3 Homematic Central Control Unit (CCU)2 through 2.51.6 and CCU3 through 3.51.6 allow Remote Code Execution in the JSON API Method ReGa.runScript, by unauthenticated attackers with access to the web interface, due to the default auto-login feature being enabled during first-time setup (or factory reset).

Affected (2)

Products: Eq 3: Homematic Ccu2 Firmware, Ccu3 Firmware

2 products

Homematic Ccu2 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Eq 3 Homematic Ccu2 Firmware	Up to 2.51.6

Running on/with	Platform Versions
Eq 3 Homematic Ccu2	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Eq 3 Ccu3 Firmware	Up to 3.51.6

Running on/with	Platform Versions
Eq 3 Homematic Ccu3	All versions

Related CWEs

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

References (2)

https://psytester.github.io/CVE-2020-12834/

Source: cve@mitre.org

ExploitThird Party Advisory

https://psytester.github.io/CVE-2020-12834/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.