一、 漏洞 CVE-2025-29756 基础信息
漏洞信息
神龙正在分析中.
提示
尽管我们采用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
漏洞标题
MQTT implementation in Sungrow iSolarCloud allowed users to subscribe to all data of all connected inverters
来源:美国国家漏洞数据库 NVD
漏洞描述信息
SunGrow's back end users system iSolarCloud https://isolarcloud.com uses an MQTT service to transport data from the user's connected devices to the user's web browser.
The MQTT server however did not have sufficient restrictions in place to limit the topics that a user could subscribe to.
While the data that is transmitted through the MQTT server is encrypted and the credentials for the MQTT server are obtained though an API call, the credentials could be used to subscribe to any topic and the encryption key can be used to decrypt all messages received.
An attack with an account on iSolarCloud.com could extract MQTT credentials and the decryption key from the browser and then use an external program to subscribe to the topic '#' and thus recieve all messages from all connected devices.
来源:美国国家漏洞数据库 NVD
CVSS信息
N/A
来源:美国国家漏洞数据库 NVD
漏洞类别
授权机制缺失
来源:美国国家漏洞数据库 NVD
二、漏洞 CVE-2025-29756 的公开POC
| # | POC 描述 | 源链接 | 神龙链接 |
|---|
三、漏洞 CVE-2025-29756 的情报信息
- https://csirt.divd.nl/CVE-2025-29756 third-party-advisory technical-description
-
标题: DIVD-2025-00009 - Sungrow’s iSolarCloud MQTT lacking permissions | DIVD CSIRT -- 🔗来源链接
标签: third-party-advisory
神龙速读
- https://isolarcloud.com product
- https://nvd.nist.gov/vuln/detail/CVE-2025-29756