← back
CVE-2024-8893

CVE-2024-8893

CVSS 7.3 HIGHEPSS 0.3%CWE-798
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.3EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
14 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Use of Hard-coded Credentials vulnerability in GoodWe Technologies Co., Ltd. GW1500‑XS allows anyone in physical proximity to the device to fully access the web interface of the inverter via Wi‑Fi.This issue affects GW1500‑XS: 1.1.2.1.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →