VDE-2025-066 | CERT@VDE

2025-08-27 10:00 (CEST) VDE-2025-066

SMA: Directory Traversal in Sunny Boy <3.10.27.R

Share: Email | Twitter

ID

VDE-2025-066

Published

2025-08-27 10:00 (CEST)

Last update

2025-08-25 15:15 (CEST)

Vendor(s)

SMA Solar Technology AG

Product(s)

Article No°	Product Name	Affected Version(s)
SB3.0-1AV-41	Sunny Boy 3.0	< 3.10.27.R
SB3.6-1AV-41	Sunny Boy 3.6	< 3.10.27.R
SB4.0-1AV-41	Sunny Boy 4.0	< 3.10.27.R
SB5.0-1AV-41	Sunny Boy 5.0	< 3.10.27.R
SB6.0-1AV-41	Sunny Boy 6.0	< 3.10.27.R

Summary

A security researcher discovered a Directory Traversal vulnerability in Sunny Boy 3, which allows remote attackers to access sensitive information. The vulnerability is already fixed since January 2021 with version 3.10.27.R.

CVE ID

CVE-2021-4459

Last Update:

Aug. 25, 2025, 3:16 p.m.

Severity

6.5 (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)

Weakness

Relative Path Traversal (CWE-23)

Summary

An authorized remote attacker can access files and directories outside the intended web root, potentially exposing sensitive system information of the affected Sunny Boy devices.

Details

file upload

Reported by

Ahmed Alroky from KOIN Network

Impact

An authenticated user can access files and directories outside the intended web root.

Solution

Remediation

Update Firmware to at least version 3.10.27.R.

Reported by

Ahmed Alroky from KOIN Network
CERT@VDE coordinated with SMA