VDE-2025-010 | CERT@VDE

2025-05-13 10:00 (CEST) VDE-2025-010

SMA: Sunny Portal demo system privilege escalation

Share: Email | Twitter

ID

VDE-2025-010

Published

2025-05-13 10:00 (CEST)

Last update

2025-05-12 12:15 (CEST)

Vendor(s)

SMA Solar Technology AG

Product(s)

Article No°	Product Name	Affected Version(s)
	www.sunnyportal.com	< 20.02.2025

Summary

A security researcher discovered a privilege escalation vulnerability in the demo system area of the SMA Classic Portal, www.sunnyportal.com. Only systems of other users have been affected who unintendedly and illicitly had added their non-demo systems to the demo system area.

CVE ID

CVE-2025-41645

Last Update:

May 12, 2025, 12:11 p.m.

Severity

8.6 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N)

Weakness

Incorrect Resource Transfer Between Spheres (CWE-669)

Summary

An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake.

Details

certvde.com

Impact

An unauthenticated attacker could get access to systems within the demo-system area. Limited to the demo-systems provided there the attacker could change parameters and configuration data. No indicators of compromise have been identified.

Solution

Remediation

No action required. The vulnerability was closed in the portal backend on Feb 20th, 2025. A workaround mitigating the impact was implemented on Jan 20th, 2025 immediately after reporting of the issue.

Reported by

CERT@VDE coordinated with SMA

Reporting: Jannik Zimmer