Skip to main content

Cux Daemon

2 CVEs product

Monthly

CVE-2019-14424 MEDIUM POC This Month

A Local File Inclusion (LFI) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to read sensitive files via a simple. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Cux Daemon Ccu2 Firmware
NVD
CVSS 3.1
6.5
EPSS
1.4%
CVE-2019-14423 HIGH POC THREAT This Week

A Remote Code Execution (RCE) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to execute system commands as root. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Cux Daemon Ccu2 Firmware
NVD
CVSS 3.1
8.8
EPSS
19.9%
EPSS 1% CVSS 6.5
MEDIUM POC This Month

A Local File Inclusion (LFI) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to read sensitive files via a simple. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Cux Daemon Ccu2 Firmware
NVD
EPSS 20% CVSS 8.8
HIGH POC THREAT This Week

A Remote Code Execution (RCE) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to execute system commands as root. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Cux Daemon +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy