PT-2015-3055 · Sma Solar · Sma Solar Sunny Webbox

Alexander Timorin

·

Published

2015-09-11

·

Updated

2016-12-22

·

CVE-2015-3964

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions SMA Solar Sunny WebBox (affected versions not specified)
Description The issue concerns hardcoded passwords in the SMA Solar Sunny WebBox system, making it easier for remote attackers to gain access.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

BDU:2016-00260
CVE-2015-3964

Affected Products

Sma Solar Sunny Webbox