Insecure generation of SAT access credentials in Ingecon EMS Board
The following firmware versions of the Ingecon Sun EMS Board are affected:
- AAX1055CT or earlier;
- ABU1001_P or earlier;
- ACL1201_B or earlier;
- ACL1200AL or earlier;
- ABH1027_K or earlier;
- ABH1007_Z or earlier;
- ABS1009_L or earlier;
- ABS1005_T or earlier;
- ACB1005_A or earlier;
- AAX1031CN or earlier.
INCIBE has coordinated the disclosure of a critically severe vulnerability affecting Ingeteam’s Ingecon Sun EMS Board, a device that provides connectivity, monitoring, and remote management capabilities for solar inverters. The vulnerability was discovered by Rubén Santamarta.
This vulnerability has been assigned the following code, CVSS v4.0 base score, CVSS vector, and CWE vulnerability type:
- CVE-2026-8072: CVSS v4.0: 9.2 | CVSS AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N | CWE-327
The risk has been mitigated with the release of a patch applicable to all versions, developed in December 2025. It is recommended that users update to the following versions:
- AAX1055CT: version AAX1055CU;
- ABU1001_P: version ABU1001_Q;
- ACL1201_B: version ACL1201_C;
- ACL1200AL: version ACL1200AM;
- ABH1027_K: version ABH1027_L;
- ABH1007_Z: version ABH1007AA;
- ABS1009_L: version ABS1009_P;
- ABS1005_T: version ABS1005_U;
- ACB1005_A: version ACB1005_C;
- AAX1031CN: version AAX1031CO.
CVE-2026-8072: insecure generation of credentials in the local SAT (Technical Support) access functionality of the Ingecon Sun EMS Board. The vulnerability arose because the secret access credentials were not based on a secure cryptographic scheme, but rather on a weak hashing algorithm, which could allow an attacker to carry out a privilege escalation.
| Identificador CVE | Severidad | Explotación | Fabricante |
|---|---|---|---|
| CVE-2026-8072 | Crítica | No | Ingeteam |
