A recent report from Forescout Vedere Labs identifies 46 new security vulnerabilities in solar inverter systems from vendors Sungrow, Growatt, and SMA. Codenamed SUN:DOWN, these flaws could enable malicious actors to seize control of devices or execute remote code, threatening the stability of electrical grids. Specific vulnerabilities include the ability for attackers to execute arbitrary commands, perform unauthorized user enumeration, and even translate sensitive data leading to account takeovers and possible physical damage to devices and infrastructure. Experts warn that exploiting these vulnerabilities could have severe ramifications.
The vulnerabilities can be exploited to execute arbitrary commands on devices or the vendor's cloud, take over accounts, gain a foothold in the vendor's infrastructure.
Attackers can upload .aspx files that will be executed by the web server of SMA, resulting in remote code execution.
Collection
[
|
...
]