CVE-2025-36745

High CVSS: 8.6

SolarEdge SE3680H ships with an outdated Linux kernel containing unpatched vulnerabilities in core subsystems. An attacker with network or local access can exploit these flaws to achieve remote code execution, privilege escalation, or disclosure of sensitive information.

Vendor

Solaredge

Product

Se3680h Firmware

CWE

NVD-CWE-noinfo

Yayın Tarihi

2025-12-12 15:15:53

Güncelleme

2025-12-23 17:21:13

Source Identifier

csirt@divd.nl

KEV Date Added

Kategoriler

NVD-CWE-noinfo Se3680h Firmware HIGH Solaredge 2025

Referanslar

https://csirt.divd.nl/CVE-2025-36745 https://csirt.divd.nl/DIVD-2025-00022/

Benzer Kayıtlar

Low

CVE-2025-36744

SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device r…

Medium

CVE-2025-36746

SolarEdge monitoring platform contains a Cross‑Site Scripting (XSS) flaw that allows an authenticated user to inject pay…

High

CVE-2025-36743

SolarEdge SE3680H has an exposed debug/test interface accessible to unauthenticated actors, allowing disclosure of syste…