CVE-2025-36756

Vulnerability Description

A problem with missing authorization on SolaX Cloud platform allows taking over any SolaX solarpanel inverter of which the serial number is known.

Related Weaknesses (CWE)

CWE-306 CWE-862

References

https://csirt.divd.nl/CVE-2025-36756
https://csirt.divd.nl/DIVD-2025-00015

FAQ

What is CVE-2025-36756?

CVE-2025-36756 is a documented vulnerability. A problem with missing authorization on SolaX Cloud platform allows taking over any SolaX solarpanel inverter of which the serial number is known.

How severe is CVE-2025-36756?

CVSS scoring is not yet available for CVE-2025-36756. Check NVD for updates.

Is there a patch for CVE-2025-36756?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.