A Server-side request forgery (SSRF) vulnerability has been identified in the SMA1000 Appliance Work Place interface. A remote unauthenticated attacker could potentially cause the appliance to make requests to unintended location.
| Vendor | Product | Versions |
|---|---|---|
| sma solar technology | sma1000 appliance work place interface | 12.4.3-03245, 12.5.0-02283, 12.4.3-03387, 12.4.3-03434, 12.5.0-02624, 12.5.0-02800 |
Updated affected versions, marked the vulnerability as actively exploited, added new patch version, and included indicators of compromise (IOCs) and relevant tags.
Updated affected versions and marked the vulnerability as actively exploited.
Initial creation