CNNVD-202512-2506 Information

CNNVD ID

CNNVD-202512-2506

Related CVE

CVE-2025-36754

• CNNVD Published: 2025-12-13

Description (Chinese)

Growatt ShineLan-X是中国古瑞瓦特（Growatt）公司的一款光伏逆变器的数据记录器。 Growatt ShineLan-X存在安全漏洞，该漏洞源于Web界面认证机制实现不当，可能导致绕过认证检查并执行中间人攻击。

Description (English)

Growatt ShineLan-X is a data recorder for a photovolt changer from the Chinese company Gravat. There is a security loophole in Growatt ShineLan-X, which stems from the inappropriate implementation of the Web interface certification mechanism, which could lead to bypassing certification checks and carrying out intermediary attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

古瑞瓦特

Published

2025-12-13

Last Modified

2026-02-24

References

https://csirt.divd.nl/CVE-2025-36754/ https://access.redhat.com/security/cve/cve-2025-36754