45 matches found
CVE-2018-12735
SAJ Solar Inverter allows remote attackers to obtain potentially sensitive information via a direct request for the inverterinfo.htm or englishmain.htm URI...
EUVD-2018-4688
Malware in sbrugna...
EUVD-2019-8855
Malware in sbrugna...
EUVD-2019-8854
Malware in sbrugna...
EUVD-2025-27529
Malicious code in bioql PyPI...
Environmental Rate Manipulation Attacks on Power Grid Security
The growing complexity of global supply chains has made hardware Trojans a significant threat in sensor-based power electronics. Traditional Trojan designs depend on digital triggers or fixed threshold conditions that can be detected during standard testing. In contrast, we introduce Environmenta...
CVE-2025-36756
A problem with missing authorization on SolaX Cloud platform allows taking over any SolaX solarpanel inverter of which the serial number is known...
CVE-2025-36756 Device Takeover vulnerability in SolaX Cloud
A problem with missing authorization on SolaX Cloud platform allows taking over any SolaX solarpanel inverter of which the serial number is known...
CVE-2025-36756
The CVE-2025-36756 entry describes a missing-authorization vulnerability in the SolaX Cloud platform that could allow takeover of a known-serial-number SolaX solar inverter. Affected component is the SolaX Cloud platform beneath the inverter management flow; root cause is insufficient access cont...
CVE-2025-36756 Device Takeover vulnerability in SolaX Cloud
A problem with missing authorization on SolaX Cloud platform allows taking over any SolaX solarpanel inverter of which the serial number is known...
SolaX Cloud 安全漏洞
SolaX Cloud is a photovoltaic monitoring and management platform from the Chinese company SolaX. A security vulnerability exists in SolaX Cloud that stems from a lack of authorization and could lead to the takeover of a solar inverter...
PT-2025-37028
Name of the Vulnerable Software and Affected Versions: SolaX Cloud platform affected versions not specified Description: A missing authorization issue exists on the SolaX Cloud platform. This allows unauthorized access and potential takeover of SolaX solar panel inverters when the serial number i...
Tigo Energy Cloud Connect Advanced (Update A)
RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers to gain unauthorized administrative access using hard-coded credentials, escalate privileges to take full control of the device, modify system settings, disrupt solar energy production, interfere with safety...
CVE-2019-19229
admincgi-bin/service.fcgi on Fronius Solar Inverter devices before 3.14.1 HM 1.12.1 allows action=download= Directory Traversal...
CVE-2019-19228
Fronius Solar Inverter devices before 3.14.1 HM 1.12.1 allow attackers to bypass authentication because the password for the today account is stored in the /tmp/webusers.conf file...
Voltronic Power ViewPower elevation of privilege vulnerability (CNVD-2025-21588)
Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. An elevation of privilege vulnerability exists in Voltronic Power ViewPower, which can be exploited by an attacker to escalate privileges and execute arbitrary code in the SYSTEM context...
Kostal PIKO security breach
Kostal PIKO is a series of solar inverter programs from Kostal. A security vulnerability exists in Kostal PIKO that stems from susceptibility to stored cross-site scripting XSS attacks that allow an attacker to inject HTML or JavaScript on a page...
Voltronic Power ViewPower 安全漏洞
Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. Voltronic Power ViewPower Pro suffers from an XML external entity injection vulnerability that can be exploited by attackers to disclose sensitive information...
Voltronic Power ViewPower 安全漏洞
Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. A remote code execution vulnerability exists in Voltronic Power ViewPower, which can be exploited by an attacker to execute code in the context of the current user...
Voltronic Power ViewPower 安全漏洞
Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. A denial of service vulnerability exists in Voltronic Power ViewPower Pro, which is caused due to a lack of authentication before allowing access to functionality. An attacker could exploit the...