CNNVD-202512-2512 Information

CNNVD ID

CNNVD-202512-2512

Related CVE

CVE-2025-36747

• CNNVD Published: 2025-12-13

Description (Chinese)

Growatt ShineLan-X是中国古瑞瓦特（Growatt）公司的一款光伏逆变器的数据记录器。 Growatt ShineLan-X存在安全漏洞，该漏洞源于固件中包含FTP服务器凭据，可能导致替换合法文件为恶意版本。

Description (English)

Growatt ShineLan-X is a data recorder for a photovolt changer from the Chinese company Gravat. Growatt ShineLan-X had a security loophole, which stemmed from the inclusion of FTP server documents in the solids, which could lead to the replacement of legal documents as malicious versions.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

古瑞瓦特

Published

2025-12-13

Last Modified

2026-02-24

References

https://csirt.divd.nl/CVE-2025-36747/ https://access.redhat.com/security/cve/cve-2025-36747