Critical severity9.8NVD Advisory· Published Nov 14, 2019· Updated Jun 17, 2026
CVE-2019-18937
CVE-2019-18937
Description
eQ-3 Homematic CCU2 2.47.20 and CCU3 3.47.18 with the Script Parser AddOn through 1.8 installed allow Remote Code Execution by unauthenticated attackers with access to the web interface via the exec.cgi script, which executes TCL script content from an HTTP POST request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- eQ-3/Homematic CCU2/CCU3description
- Range: 2.47.20
Patches
Vulnerability mechanics
References
1- psytester.github.io/CVE-2019-18937/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.