CNNVD-202602-2135 Information

CNNVD ID

CNNVD-202602-2135

Related CVE

CVE-2025-15575

• CNNVD Published: 2026-02-12

Description (Chinese)

SolaX Power Pocket是中国艾罗能源（SolaX）公司的一个监控数据采集工具。 SolaX Power Pocket存在安全漏洞，该漏洞源于固件更新功能未验证所提供固件更新文件的真实性，可能导致攻击者在设备上刷入恶意固件更新文件。

Description (English)

SolaX Power Pocket is a monitoring data-collection tool for SolaX. There is a security loophole in SolaX Power Pocket, which stems from the fact that the solids update function does not verify the authenticity of the solids update document provided, which may result in the attackers brushing up the equipment with maliciouss.

Vulnerability Type

其他

Affected Vendor

艾罗能源

Published

2026-02-12

Last Modified

2026-02-24

References

https://r.sec-consult.com/solax https://access.redhat.com/security/cve/cve-2025-15575