4 matches found
CVE-2025-26857
Unauthenticated attackers can rename arbitrary devices of arbitrary users i.e., EV chargers...
CVE-2025-26857 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
Unauthenticated attackers can rename arbitrary devices of arbitrary users i.e., EV chargers...
CVE-2025-26857
CVE-2025-26857 affects Growatt Cloud Applications (vulnerable through 3.6.0 and earlier according to CNNVD). The flaw allows an unauthenticated attacker to rename arbitrary devices owned by any user (notably EV chargers) by exploiting insufficient input validation. Multiple connected sources (Red...
CVE-2025-26857 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
Unauthenticated attackers can rename arbitrary devices of arbitrary users i.e., EV chargers...