CVE-2017-9852

CRITICAL

SMA Solar Technology - Info Disclosure

Title source: llm

Description

An Incorrect Password Management issue was discovered in SMA Solar Technology products. Default passwords exist that are rarely changed. User passwords will almost always be default. Installer passwords are expected to be default or similar across installations installed by the same company (but are sometimes changed). Hidden user accounts have (at least in some cases, though more research is required to test this for all hidden user accounts) a fixed password for all devices; it can never be changed by a user. Other vulnerabilities exist that allow an attacker to get the passwords of these hidden user accounts. NOTE: the vendor reports that it has no influence on the allocation of passwords, and that global hardcoded master passwords do not exist. Also, only Sunny Boy TLST-21 and TL-21 and Sunny Tripower TL-10 and TL-30 could potentially be affected

References (3)

Core 3

Core References

Various Sources x_refsource_misc

http://www.sma.de/en/statement-on-cyber-security.html

Third Party Advisory x_refsource_misc

https://horusscenario.com/CVE-information/

Various Sources x_refsource_misc

http://www.sma.de/fileadmin/content/global/specials/documents/cyber-security/Whitepaper-Cyber-Security-AEN1732_07.pdf

Scores

CVSS v3 9.8

EPSS 0.0172

EPSS Percentile 74.4%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-798

Status published

Products (39)

sma/sunny_boy_1.5_firmware

sma/sunny_boy_2.5_firmware

sma/sunny_boy_3.0_firmware

sma/sunny_boy_3.6_firmware

sma/sunny_boy_3000tl_firmware

sma/sunny_boy_3600_firmware

sma/sunny_boy_3600tl_firmware

sma/sunny_boy_4.0_firmware

sma/sunny_boy_4000tl_firmware

sma/sunny_boy_5.0_firmware

... and 29 more

Published Aug 05, 2017

Tracked Since Feb 18, 2026