Lucene search
+L

39 matches found

ICS
ICS
added 2025/08/07 6:0 a.m.6 views

EG4 Electronics EG4 Inverters (Update B)

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to intercept and manipulate critical data, install malicious firmware, hijack device access, and gain unauthorized control over the system. 2. RECOMMENDED PRACTICES CISA recommends users take defensive...

6.7AI score
Exploits0References10
Packet Storm News
Packet Storm News
added 2025/05/20 12:0 a.m.8 views

Destabilizing Power Grid and Energy Market by Cyberattacks on Smart Inverters

Cyberattacks on smart inverters and distributed PV are becoming an imminent threat, because of the recent well-documented vulnerabilities and attack incidents. Particularly, the long lifespan of inverter devices, users' oblivion of cybersecurity compliance, and the lack of cyber regulatory...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/05/16 1:55 p.m.15 views

Communications Backdoor in Chinese Power Inverters

This is a weird story: U.S. energy officials are reassessing the risk posed by Chinese-made devices that play a critical role in renewable energy infrastructure after unexplained communication equipment was found inside some of them, two people familiar with the matter said. … Over the past nine...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2025/03/28 1:21 p.m.20 views

Researchers Uncover 46 Critical Flaws in Solar Power Systems From Sungrow, Growatt, and SMA

Cybersecurity researchers have disclosed 46 new security flaws in products from three solar power system vendors, Sungrow, Growatt, and SMA, that could be exploited by a bad actor to seize control of devices or execute code remotely, posing severe risks to electrical grids. The vulnerabilities ha...

9.2AI score
Exploits0
CNNVD
CNNVD
added 2025/01/24 12:0 a.m.7 views

SunGrow WiNet-S 安全漏洞

SunGrow WiNet-S is a LAN communication module from SunGrow, China. A trust management issue vulnerability exists in SunGrow WiNet-S version V200.001.00.P027 and prior versions, which stems from the use of hard-coded MQTT credentials. An attacker could use this vulnerability to send arbitrary...

5.4CVSS7.1AI score0.00235EPSS
Exploits0References2
CNVD
CNVD
added 2024/12/03 12:0 a.m.5 views

Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack Overflow Code Execution Vulnerability

Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments developed by Fuji Electric Japan for collecting real-time data from PLCs, temperature controllers, inverters and other devices. Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack Overflow...

7.8CVSS8AI score0.00268EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/08/12 10:30 a.m.23 views

Researchers Uncover Vulnerabilities in Solarman and Deye Solar Systems

Cybersecurity researchers have identified a number of security shortcomings in photovoltaic system management platforms operated by Chinese companies Solarman and Deye that could enable malicious actors to cause disruption and power blackouts. "If exploited, these vulnerabilities could allow an...

7.8AI score
Exploits0
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. Voltronic Power ViewPower suffers from an information disclosure vulnerability that is caused by a lack of authentication before allowing access to functionality. An attacker could exploit the...

7.5CVSS6.2AI score0.36038EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. An elevation of privilege vulnerability exists in Voltronic Power ViewPower, which can be exploited by an attacker to escalate privileges and execute arbitrary code in the SYSTEM context...

7.8CVSS8AI score0.0031EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.8 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. A security bypass vulnerability exists in Voltronic Power ViewPower that stems from a specific flaw in the updateManagerPassword method, which can be exploited by an attacker to bypass...

9.8CVSS6.8AI score0.01553EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/01 12:0 a.m.7 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. An authentication bypass vulnerability exists in Voltronic Power ViewPower Pro, which can be exploited by an attacker to bypass authentication on the system...

9.8CVSS7AI score0.45744EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/26 12:0 a.m.6 views

SMA Solar Technology AG Cluster Controller Cross-Site Request Forgery Vulnerability

The SMA Solar Technology AG Cluster Controller is a cluster controller from SMA Solar Technology AG, Germany, used to manage and monitor clusters of multiple solar inverters to optimize energy yield and system performance. A cross-site request forgery vulnerability exists in the SMA Solar...

8.8CVSS6.6AI score0.00305EPSS
Exploits0References2
CNVD
CNVD
added 2023/12/25 12:0 a.m.5 views

Voltronic Power ViewPower Authentication Bypass Vulnerability

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. An authentication bypass vulnerability exists in Voltronic Power ViewPower Pro, which can be exploited by an attacker to bypass authentication on the system...

9.8CVSS9.6AI score0.45744EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.8 views

Rockwell Automation Armor PowerFlex Security Breach

Rockwell Automation Armor PowerFlex is a line of inverters from Rockwell Automation, Inc. A security vulnerability exists in the Rockwell Automation Armor PowerFlex that stems from a vulnerability that allows an attacker to send network commands to cause the product to generate a large amount of...

8.6CVSS6.8AI score0.00637EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/01/26 12:0 a.m.8 views

Fuji Electric Tellus Lite V-Simulator 和 Fuji Electric V-Server Lite 缓冲区错误漏洞

Fuji Electric Tellus Lite V-Simulator and Fuji Electric V-Server Lite are both products of Fuji Electric Japan.Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments. Fuji Electric V-Server Lite is a remote monitoring software for industrial environments...

7.8CVSS6.3AI score0.02142EPSS
Exploits0References5
CNVD
CNVD
added 2018/09/29 12:0 a.m.4 views

Buffer Overflow Vulnerability in Multiple Fuji Electric Products

Fuji Electric FRENIC Loader, etc. are inverters from Fuji Electric Japan. A stack buffer overflow vulnerability exists in multiple Fuji Electric products, which stems from the program failing to properly detect user-submitted comments. A remote attacker could exploit the vulnerability to execute...

9.8CVSS10AI score0.03577EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2017/08/07 9:39 p.m.20 views

Critical Flaws Found in Solar Panels Could Shut Down Power Grids

A Dutch security researcher has uncovered a slew of security vulnerabilities in an essential component of solar panels which could be exploited to cause widespread outages in European power grids. Willem Westerhof, a cybersecurity researcher at Dutch security firm ITsec, discovered 21 security...

7.3AI score
Exploits0
NVD
NVD
added 2017/08/05 5:29 p.m.22 views

CVE-2017-9855

An issue was discovered in SMA Solar Technology products. A secondary authentication system is available for Installers called the Grid Guard system. This system uses predictable codes, and a single Grid Guard code can be used on any SMA inverter. Any such code, when combined with the installer...

9.8CVSS9.6AI score0.01583EPSS
Exploits0References3
NVD
NVD
added 2017/08/05 5:29 p.m.17 views

CVE-2017-9853

An issue was discovered in SMA Solar Technology products. All inverters have a very weak password policy for the user and installer password. No complexity requirements or length requirements are set. Also, strong passwords are impossible due to a maximum of 12 characters and a limited set of...

9.8CVSS9.5AI score0.01716EPSS
Exploits0References3
Rows per page
Query Builder