Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-28756

Published: 21/03/2024 Updated: 22/03/2024

Vulnerability Summary

The SolarEdge mySolarEdge application prior to 2.20.1 for Android has a certificate verification issue that allows a Machine-in-the-middle (MitM) malicious user to read and alter all network traffic between the application and the server.

References

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-012.txthttps://www.solaredge.com/coordinated-vulnerability-disclosure-policy/advisories/sedg-2024-1https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook