CVE-2025-36743

High CVSS: 8.6

SolarEdge SE3680H has an exposed debug/test interface accessible to unauthenticated actors, allowing disclosure of system internals and execution of debug commands.

Vendor

Solaredge

Product

Se3680h Firmware

CWE

NVD-CWE-Other

Yayın Tarihi

2025-12-12 15:15:52

Güncelleme

2025-12-23 17:16:42

Source Identifier

csirt@divd.nl

KEV Date Added

Kategoriler

NVD-CWE-Other Se3680h Firmware HIGH Solaredge 2025

Referanslar

https://csirt.divd.nl/CVE-2025-36743 https://csirt.divd.nl/DIVD-2025-00022/

Benzer Kayıtlar

Low

CVE-2025-36744

SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device r…

High

CVE-2025-36745

SolarEdge SE3680H ships with an outdated Linux kernel containing unpatched vulnerabilities in core subsystems. An attac…

Medium

CVE-2025-36746

SolarEdge monitoring platform contains a Cross‑Site Scripting (XSS) flaw that allows an authenticated user to inject pay…