Auth bypass in Solax Power Cloud

CVE-2025-36757

It is possible to bypass the administrator login screen on SolaX Cloud. An attacker could use parameter tampering to bypass the login screen and gain limited access to the system.

Vulnerability class: Broken Authentication

EPSS: 0.003 (23.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References