CVE-2025-36744

Low CVSS: 2.4

SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information.

Vendor

Solaredge

Product

Se3680h Firmware

CWE

NVD-CWE-Other

Yayın Tarihi

2025-12-12 15:15:53

Güncelleme

2025-12-23 17:20:12

Source Identifier

csirt@divd.nl

KEV Date Added

Kategoriler

NVD-CWE-Other Se3680h Firmware LOW Solaredge 2025

Referanslar

https://csirt.divd.nl/CVE-2025-36744 https://csirt.divd.nl/DIVD-2025-00022/

Benzer Kayıtlar

High

CVE-2025-36745

SolarEdge SE3680H ships with an outdated Linux kernel containing unpatched vulnerabilities in core subsystems. An attac…

Medium

CVE-2025-36746

SolarEdge monitoring platform contains a Cross‑Site Scripting (XSS) flaw that allows an authenticated user to inject pay…

High

CVE-2025-36743

SolarEdge SE3680H has an exposed debug/test interface accessible to unauthenticated actors, allowing disclosure of syste…