Vulnerabilities > EQ 3 > Homematic Central Control Unit Ccu2 > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-22 | CVE-2018-7299 | Unspecified vulnerability in Eq-3 Homematic Central Control Unit Ccu2 Firmware Remote Code Execution in the addon installation process in eQ-3 AG Homematic CCU2 2.29.2 and earlier allows authenticated attackers to create or overwrite arbitrary files or install malicious software on the device. low complexity eq-3 | 5.2 |
| 2018-02-22 | CVE-2018-7296 | Path Traversal vulnerability in Eq-3 Homematic Central Control Unit Ccu2 Firmware Directory Traversal / Arbitrary File Read in User.getLanguage method in eQ-3 AG Homematic CCU2 2.29.2 and earlier allows remote attackers to read the first line of an arbitrary file on the CCU2's filesystem. | 5.0 |