Eq 3 · Eq-3 Homematic Ccu2 · CVE-2021-33032
**Name of the Vulnerable Software and Affected Versions**
eQ-3 HomeMatic CCU2 firmware versions up to and including 2.57.5
eQ-3 HomeMatic CCU3 firmware versions up to and including 3.57.5
**Description**
A Remote Code Execution issue in the WebUI component allows remote unauthenticated attackers to execute system commands as root via a simple HTTP request.
**Recommendations**
For eQ-3 HomeMatic CCU2 firmware versions up to and including 2.57.5, update to a version later than 2.57.5 to resolve the issue.
For eQ-3 HomeMatic CCU3 firmware versions up to and including 3.57.5, update to a version later than 3.57.5 to resolve the issue.