Advisories

• CVE-2018-7301 - Unauthenticated XML-RPC Service in HomeMatic CCU2
• CVE-2018-7300 - Arbitrary File Upload / Remote Code Execution in HomeMatic CCU2
• CVE-2018-7299 - Untrusted Addon Installation / Remote Code Execution in HomeMatic CCU2
• CVE-2018-7298 - Downloading Firmware via Plain HTTP in HomeMatic CCU2
• CVE-2018-7297 - Remote Code Execution in HomeMatic CCU2
• CVE-2018-7296 - Directory Traversal / Arbitrary File Read in HomeMatic CCU2