Sunny Boy TLST-21

CVEs (10)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2017-9861	Sma Sunny Boy 3600 Firmware	Cri	0.64	9.8	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. The SIP implementation does not properly use authentication with encryption: it is vulnerable to replay attacks, packet injection attacks, and man in the middle attacks. An attacker is able to successfully use SIP to…
CVE-2017-9860	Sma Sunny Boy 3600 Firmware	Cri	0.64	9.8	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. An attacker can use Sunny Explorer or the SMAdata2+ network protocol to update the device firmware without ever having to authenticate. If an attacker is able to create a custom firmware version that is accepted by the…
CVE-2017-9859	Sma Sunny Boy 3600 Firmware	Cri	0.64	9.8	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. The inverters make use of a weak hashing algorithm to encrypt the password for REGISTER requests. This hashing algorithm can be cracked relatively easily. An attacker will likely be able to crack the password using…
CVE-2017-9855	Sma Sunny Boy 3600 Firmware	Cri	0.64	9.8	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. A secondary authentication system is available for Installers called the Grid Guard system. This system uses predictable codes, and a single Grid Guard code can be used on any SMA inverter. Any such code, when combined…
CVE-2017-9854	Sma Sunny Boy 3600 Firmware	Cri	0.64	9.8	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. By sniffing for specific packets on the localhost, plaintext passwords can be obtained as they are typed into Sunny Explorer by the user. These passwords can then be used to compromise the overall device. NOTE: the vendor…
CVE-2017-9853	Sma Sunny Boy 3600 Firmware	Cri	0.64	9.8	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. All inverters have a very weak password policy for the user and installer password. No complexity requirements or length requirements are set. Also, strong passwords are impossible due to a maximum of 12 characters and a…
CVE-2017-9852	Sma Sunny Boy 3600 Firmware	Cri	0.64	9.8	0.00	Aug 5, 2017	An Incorrect Password Management issue was discovered in SMA Solar Technology products. Default passwords exist that are rarely changed. User passwords will almost always be default. Installer passwords are expected to be default or similar across installations installed by the…
CVE-2017-9864	Sma Sunny Boy 3600 Firmware	Hig	0.49	7.5	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. An attacker can change the plant time even when not authenticated in any way. This changes the system time, possibly affecting lockout policies and random-number generators based on timestamps, and makes timestamps for…
CVE-2017-9862	Sma Sunny Explorer	Hig	0.49	7.5	0.00	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. When signed into Sunny Explorer with a wrong password, it is possible to create a debug report, disclosing information regarding the application and allowing the attacker to create and save a .txt file with contents to…
CVE-2017-9858	Sma Sunny Boy 3600 Firmware	Hig	0.49	7.5	0.01	Aug 5, 2017	An issue was discovered in SMA Solar Technology products. By sending crafted packets to an inverter and observing the response, active and inactive user accounts can be determined. This aids in further attacks (such as a brute force attack) as one now knows exactly which users…

CVE-2017-9861CriAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.64cvss 9.8epss 0.00
An issue was discovered in SMA Solar Technology products. The SIP implementation does not properly use authentication with encryption: it is vulnerable to replay attacks, packet injection attacks, and man in the middle attacks. An attacker is able to successfully use SIP to…
CVE-2017-9860CriAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.64cvss 9.8epss 0.00
An issue was discovered in SMA Solar Technology products. An attacker can use Sunny Explorer or the SMAdata2+ network protocol to update the device firmware without ever having to authenticate. If an attacker is able to create a custom firmware version that is accepted by the…
CVE-2017-9859CriAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.64cvss 9.8epss 0.00
An issue was discovered in SMA Solar Technology products. The inverters make use of a weak hashing algorithm to encrypt the password for REGISTER requests. This hashing algorithm can be cracked relatively easily. An attacker will likely be able to crack the password using…
CVE-2017-9855CriAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.64cvss 9.8epss 0.00
An issue was discovered in SMA Solar Technology products. A secondary authentication system is available for Installers called the Grid Guard system. This system uses predictable codes, and a single Grid Guard code can be used on any SMA inverter. Any such code, when combined…
CVE-2017-9854CriAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.64cvss 9.8epss 0.00
An issue was discovered in SMA Solar Technology products. By sniffing for specific packets on the localhost, plaintext passwords can be obtained as they are typed into Sunny Explorer by the user. These passwords can then be used to compromise the overall device. NOTE: the vendor…
CVE-2017-9853CriAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.64cvss 9.8epss 0.00
An issue was discovered in SMA Solar Technology products. All inverters have a very weak password policy for the user and installer password. No complexity requirements or length requirements are set. Also, strong passwords are impossible due to a maximum of 12 characters and a…
CVE-2017-9852CriAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.64cvss 9.8epss 0.00
An Incorrect Password Management issue was discovered in SMA Solar Technology products. Default passwords exist that are rarely changed. User passwords will almost always be default. Installer passwords are expected to be default or similar across installations installed by the…
CVE-2017-9864HigAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.49cvss 7.5epss 0.00
An issue was discovered in SMA Solar Technology products. An attacker can change the plant time even when not authenticated in any way. This changes the system time, possibly affecting lockout policies and random-number generators based on timestamps, and makes timestamps for…
CVE-2017-9862HigAug 5, 2017
Sma
Sunny Explorer
risk 0.49cvss 7.5epss 0.00
An issue was discovered in SMA Solar Technology products. When signed into Sunny Explorer with a wrong password, it is possible to create a debug report, disclosing information regarding the application and allowing the attacker to create and save a .txt file with contents to…
CVE-2017-9858HigAug 5, 2017
Sma
Sunny Boy 3600 Firmware
risk 0.49cvss 7.5epss 0.01
An issue was discovered in SMA Solar Technology products. By sending crafted packets to an inverter and observing the response, active and inactive user accounts can be determined. This aids in further attacks (such as a brute force attack) as one now knows exactly which users…