Critical severity9.8NVD Advisory· Published Nov 14, 2019· Updated Jun 17, 2026
CVE-2019-18938
CVE-2019-18938
Description
eQ-3 Homematic CCU2 2.47.20 and CCU3 3.47.18 with the E-Mail AddOn through 1.6.8.c installed allow Remote Code Execution by unauthenticated attackers with access to the web interface via the save.cgi script for payload upload and the testtcl.cgi script for its execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- eQ-3/Homematic CCU2/CCU3description
- Range: <=2.47.20
Patches
Vulnerability mechanics
References
1- psytester.github.io/CVE-2019-18938/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.