CVE-2025-36751

Vulnerability Description

Encryption is missing on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X. This allows an attacker with access to the network to intercept and potentially manipulate communication requests between the inverter and its cloud endpoint.

Related Weaknesses (CWE)

CWE-311

References

https://csirt.divd.nl/CVE-2025-36751/

FAQ

What is CVE-2025-36751?

CVE-2025-36751 is a documented vulnerability. Encryption is missing on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X. This allows an attacker with access to the network to intercept and potentially manipulate communication r...

How severe is CVE-2025-36751?

CVSS scoring is not yet available for CVE-2025-36751. Check NVD for updates.

Is there a patch for CVE-2025-36751?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.