Browse all 7 CVE security advisories affecting SolaX Power. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SolaX Power specializes in solar energy storage systems and inverters, with seven CVEs recorded to date. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from inadequate input validation and authentication flaws. While no major public security incidents have been documented, the presence of multiple CVEs suggests ongoing security challenges in their web interfaces and firmware. The company's focus on renewable energy infrastructure contrasts with recurring security gaps that could expose critical infrastructure to unauthorized access or control, highlighting the need for stronger security practices in IoT devices managing power systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-15574 | Insecure Credential Generation for Solax Power Pocket WiFi models MQTT Cloud Connection — Pocket WiFi 3.0CWE-330 | 9.8AI | CriticalAI | 2026-02-12 |
| CVE-2025-15575 | Missing Firmware Authenticity Checks in Solax Power Pocket WiFi models — Pocket WiFi 3.0CWE-494 | 4.3AI | MediumAI | 2026-02-12 |
| CVE-2025-15573 | Missing Certificate Validation for Solax Power Pocket WiFi models MQTT Cloud Connection — Pocket WiFi 3.0CWE-295 | 8.1AI | HighAI | 2026-02-12 |
| CVE-2025-36759 | Sensitive Information Disclosure in SolaX Cloud — SolaX CloudCWE-200 | 5.3AI | MediumAI | 2025-09-10 |
| CVE-2025-36757 | Bypass of administrator login screen in SolaX Cloud — SolaX CloudCWE-306 | 9.8AI | CriticalAI | 2025-09-10 |
| CVE-2025-36758 | Bypass of bruteforce protection in SolaX Cloud — SolaX CloudCWE-307 | 9.8AI | CriticalAI | 2025-09-10 |
| CVE-2025-36756 | Device Takeover vulnerability in SolaX Cloud — SolaX CloudCWE-862 | 8.8AI | HighAI | 2025-09-10 |
This page lists every published CVE security advisory associated with SolaX Power. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.