cnvd - cnvd-2020-14282

CNVD-2020-14282

Vulnerability from cnvd - Published: 2020-02-28

Title

eQ-3 Homematic CCU3会话固定漏洞

Description

eQ-3 Homematic CCU3是德国eQ-3公司的一款智能家居系统的中央控制单元。使用3.41.11版本固件的eQ-3 HomeMatic CCU3中存在会话固定漏洞，攻击者可通过创建会话ID并将其发送给受害者利用该漏洞登录并控制系统。

Severity

中

Patch Name

eQ-3 Homematic CCU3会话固定漏洞的补丁

Patch Description

eQ-3 Homematic CCU3是德国eQ-3公司的一款智能家居系统的中央控制单元。使用3.41.11版本固件的eQ-3 HomeMatic CCU3中存在会话固定漏洞，攻击者可通过创建会话ID并将其发送给受害者利用该漏洞登录并控制系统。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.eq-3.com/products/homematic.html

Reference

https://nvd.nist.gov/vuln/detail/CVE-2019-15849

Impacted products

Name
eq-3 eQ-3 Homematic CCU3 3.41.11

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-15849",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2019-15849"
    }
  },
  "description": "eQ-3 Homematic CCU3\u662f\u5fb7\u56fdeQ-3\u516c\u53f8\u7684\u4e00\u6b3e\u667a\u80fd\u5bb6\u5c45\u7cfb\u7edf\u7684\u4e2d\u592e\u63a7\u5236\u5355\u5143\u3002\n\n\u4f7f\u75283.41.11\u7248\u672c\u56fa\u4ef6\u7684eQ-3 HomeMatic CCU3\u4e2d\u5b58\u5728\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u521b\u5efa\u4f1a\u8bddID\u5e76\u5c06\u5176\u53d1\u9001\u7ed9\u53d7\u5bb3\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u767b\u5f55\u5e76\u63a7\u5236\u7cfb\u7edf\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.eq-3.com/products/homematic.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-14282",
  "openTime": "2020-02-28",
  "patchDescription": "eQ-3 Homematic CCU3\u662f\u5fb7\u56fdeQ-3\u516c\u53f8\u7684\u4e00\u6b3e\u667a\u80fd\u5bb6\u5c45\u7cfb\u7edf\u7684\u4e2d\u592e\u63a7\u5236\u5355\u5143\u3002\r\n\r\n\u4f7f\u75283.41.11\u7248\u672c\u56fa\u4ef6\u7684eQ-3 HomeMatic CCU3\u4e2d\u5b58\u5728\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u521b\u5efa\u4f1a\u8bddID\u5e76\u5c06\u5176\u53d1\u9001\u7ed9\u53d7\u5bb3\u8005\u5229\u7528\u8be5\u6f0f\u6d1e\u767b\u5f55\u5e76\u63a7\u5236\u7cfb\u7edf\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "eQ-3 Homematic CCU3\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "eq-3 eQ-3 Homematic CCU3 3.41.11"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-15849",
  "serverity": "\u4e2d",
  "submitTime": "2019-10-18",
  "title": "eQ-3 Homematic CCU3\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e"
}

CVE-2019-15849 (GCVE-0-2019-15849)

Vulnerability from cvelistv5 – Published: 2019-10-17 13:33 – Updated: 2024-08-05 01:03

Summary

eQ-3 HomeMatic CCU3 firmware 3.41.11 allows session fixation. An attacker can create session IDs and send them to the victim. After the victim logs in to the session, the attacker can use that session. The attacker could create SSH logins after a valid session and easily compromise the system.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	https://www.eq-3.com/products/homematic.html	x_refsource_MISC
	https://noskill1337.github.io/homematic-ccu3-sess…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T01:03:30.904Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.eq-3.com/products/homematic.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://noskill1337.github.io/homematic-ccu3-session-fixation"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "eQ-3 HomeMatic CCU3 firmware 3.41.11 allows session fixation. An attacker can create session IDs and send them to the victim. After the victim logs in to the session, the attacker can use that session. The attacker could create SSH logins after a valid session and easily compromise the system."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-10-17T13:33:20",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.eq-3.com/products/homematic.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://noskill1337.github.io/homematic-ccu3-session-fixation"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2019-15849",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "eQ-3 HomeMatic CCU3 firmware 3.41.11 allows session fixation. An attacker can create session IDs and send them to the victim. After the victim logs in to the session, the attacker can use that session. The attacker could create SSH logins after a valid session and easily compromise the system."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.eq-3.com/products/homematic.html",
              "refsource": "MISC",
              "url": "https://www.eq-3.com/products/homematic.html"
            },
            {
              "name": "https://noskill1337.github.io/homematic-ccu3-session-fixation",
              "refsource": "MISC",
              "url": "https://noskill1337.github.io/homematic-ccu3-session-fixation"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2019-15849",
    "datePublished": "2019-10-17T13:33:20",
    "dateReserved": "2019-09-02T00:00:00",
    "dateUpdated": "2024-08-05T01:03:30.904Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-14282

CVE-2019-15849 (GCVE-0-2019-15849)

Tags

Sightings

Nomenclature