CVE-2025-36744
Unknown
Unknown - Not Provided
BaseFortify
Vulnerability report for CVE-2025-36744, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2025-12-12
Last updated on: 2025-12-23
Assigner: Dutch Institute for Vulnerability Disclosure
Description
Description
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader loop. While the device repeatedly initializes and waits for boot instructions, the bootloader emits diagnostic output this behavior can leak operating system information.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| solaredge | se3680h_firmware | From 4.0 (inc) to 4.22 (exc) |
| solaredge | se3680h | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-NVD-CWE-Other |