Improper Certificate Validation in Sungrow iSolarCloud Android App
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2024-50691 |
| CWE-ID | CWE-295 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
iSolarCloud Android App Mobile applications / Apps for mobile phones |
| Vendor | Sungrow |
Security Bulletin
This security bulletin contains one high risk vulnerability.
1) Improper Certificate Validation
EUVDB-ID: #VU105725
Risk: High
CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-50691
CWE-ID:
CWE-295 - Improper Certificate Validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to improper certificate validation. A remote attacker can impersonate the iSolarCloud server and communicate with the Android app.
MitigationInstall updates from vendor's website.
Vulnerable software versionsiSolarCloud Android App: 2.1.6.20241104
CPE2.3- cpe:2.3:a:sungrow:isolarcloud_android_app:*:*:*:*:*:*:*:*
- cpe:2.3:a:sungrow:isolarcloud_android_app:2.1.6.20241104:*:*:*:*:*:*:*
https://www.cisa.gov/news-events/ics-advisories/icsa-25-072-12
https://en.sungrowpower.com/security-notice-detail-2/6124
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to trick the victim to perform certain actions on the device.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
