CVE-2024-50692

Published: Jan 24, 2025Modified: May 29, 2025

5.4

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Exploitability: 2.3 / Impact: 2.7

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

SunGrow WiNet-SV200.001.00.P027 and earlier versions contains hardcoded MQTT credentials that allow an attacker to send arbitrary commands to an arbitrary inverter. It is also possible to impersonate the broker, because TLS is not used to identify the real MQTT broker. This means that MQTT communications are vulnerable to MitM attacks at the TCP/IP level.

Affected (2)

Products: Sungrowpower: Winet S Firmware

1 product

Winet S Firmware

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sungrowpower Winet S Firmware	Version 200.001.00.p027

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Sungrowpower Winet S Firmware	Before 200.001.00.p027

Running on/with	Platform Versions
Sungrowpower Winet S	All versions

Related CWEs

Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

References (2)

https://en.sungrowpower.com/security-notice-detail-2/5961

Source: cve@mitre.org

Vendor Advisory

https://mqtt-pwn.readthedocs.io/en/latest/intro.html

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Product

Timeline

No history available yet.