Vulnerability in Solaredge Se3680h
CVE-2025-36745
SolarEdge SE3680H ships with an outdated Linux kernel containing unpatched vulnerabilities in core subsystems. An attacker with network or local access can exploit these flaws to achieve remote code execution, privilege escalation, or dis…
EPSS: 0.002 (9.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Solaredge Se3680h — versions 4.0
- Solaredge Se3680h_firmware
References
- csirt@divd.nl (Third Party Advisory, third-party-advisory)
- csirt@divd.nl (Broken Link, third-party-advisory)
Frequently asked questions
- What is CVE-2025-36745?
- CVE-2025-36745 is a high-severity vulnerability in Solaredge Se3680h, classified under CWE-1104 — USE OF UNMAINTAINED THIRD PARTY COMPONENTS. CVSS score: 7.8/10. Published 2025-12-12.
- How severe is CVE-2025-36745?
- High severity. CVSS v3 base score is 7.8 out of 10.