Sunny Explorer Security Vulnerabilities and Issues — Sunny Explorer CVE List

Lucene search

SmaSunny Explorer

3 matches found

CVE•added 2017/08/05 5:29 p.m.•42 views

CVE-2017-9863

An issue was discovered in SMA Solar Technology products. If a user simultaneously has Sunny Explorer running and visits a malicious host, cross-site request forgery can be used to change settings in the inverters (for example, issuing a POST request to change the user password). All Sunny Explorer...

8.8CVSS8.4AI score0.00249EPSS

CVE•added 2017/08/05 5:29 p.m.•38 views

CVE-2017-9851

An issue was discovered in SMA Solar Technology products. By sending nonsense data or setting up a TELNET session to the database port of Sunny Explorer, the application can be crashed. NOTE: the vendor reports that the maximum possible damage is a communication failure. Also, only Sunny Boy TLST-2...

7.5CVSS7.5AI score0.00378EPSS

CVE•added 2017/08/05 5:29 p.m.•36 views

CVE-2017-9862

An issue was discovered in SMA Solar Technology products. When signed into Sunny Explorer with a wrong password, it is possible to create a debug report, disclosing information regarding the application and allowing the attacker to create and save a .txt file with contents to his liking. An attacke...

7.5CVSS7.3AI score0.00339EPSS