CVE-2021-46416

CVE-2021-46416CVE-2021-46416

sma / sunny_tripower_firmware

Description

Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.

Scoring

CVSS 8.1 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Last modified2026-07-13
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.