Vulnerabilities > CVE-2017-9851 - Unspecified vulnerability in SMA Sunny Explorer

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

sma

NVD

Published: 2017-08-05

Updated: 2024-08-05

Summary

An issue was discovered in SMA Solar Technology products. By sending nonsense data or setting up a TELNET session to the database port of Sunny Explorer, the application can be crashed. NOTE: the vendor reports that the maximum possible damage is a communication failure. Also, only Sunny Boy TLST-21 and TL-21 and Sunny Tripower TL-10 and TL-30 could potentially be affected

Vulnerable Configurations

Part	Description	Count
Application	Sma SMA Sunny Explorer -	1

References

https://horusscenario.com/CVE-information/
http://www.sma.de/fileadmin/content/global/specials/documents/cyber-security/Whitepaper-Cyber-Security-AEN1732_07.pdf
http://www.sma.de/en/statement-on-cyber-security.html