CVE-2024-50692

MEDIUM

SunGrow WiNet-S < 200.001.00.p027 - Use of Hard-coded MQTT Credentials

Title source: llm

Description

SunGrow WiNet-SV200.001.00.P027 and earlier versions contains hardcoded MQTT credentials that allow an attacker to send arbitrary commands to an arbitrary inverter. It is also possible to impersonate the broker, because TLS is not used to identify the real MQTT broker. This means that MQTT communications are vulnerable to MitM attacks at the TCP/IP level.

References (2)

Core 2

Core References

Vendor Advisory

https://en.sungrowpower.com/security-notice-detail-2/5961

Product

https://mqtt-pwn.readthedocs.io/en/latest/intro.html

Scores

CVSS v3 5.4

EPSS 0.0023

EPSS Percentile 14.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-798

Status published

Products (2)

sungrowpower/winet-s_firmware 200.001.00.p027

sungrowpower/winet-s_firmware < 200.001.00.p027

Published Jan 24, 2025

Tracked Since Feb 18, 2026