VYPR
High severity7.4NVD Advisory· Published Feb 26, 2025· Updated Jun 17, 2026

CVE-2024-50691

CVE-2024-50691

Description

SunGrow iSolarCloud Android app V2.1.6.20241104 and prior suffers from Missing SSL Certificate Validation. The app explicitly ignores certificate errors and is vulnerable to MiTM attacks. Attackers can impersonate the iSolarCloud server and communicate with the Android app.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • SunGrow/iSolarCloudcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=2.1.6.20241104

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.