Vulnerabilities

CVE-2025-13932

by Fred · 04/12/2025

The SolisCloud API suffers from a Broken Access Control vulnerability, specifically an Insecure Direct Object Reference (IDOR), where any authenticated user can access detailed data of any plant by altering the plant_id in the request.

More information : https://www.cisa.gov/news-events/ics-advisories/icsa-25-338-06

Similar

Tags: Cybersecurity Alert