CVE-2025-29757 | Growatt Cloud Service up to 20250712 Plant Transfer authorization

Inserito da Angelo Barbosa | Lug 19, 2025 | CVE

A vulnerability was found in Growatt Cloud Service up to 20250712. It has been classified as critical. Affected is an unknown function of the component Plant Transfer Handler. The manipulation leads to incorrect authorization.

This vulnerability is traded as CVE-2025-29757. It is possible to launch the attack remotely. There is no exploit available.

This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

CVE-2025-29757 | Growatt Cloud Service up to 20250712 Plant Transfer authorization

Post correlati

CVE-2024-2291 | Progress MOVEit Transfer up to 14.0.10/14.1.11/15.0.8/15.1.3 insufficient logging

CVE-2023-38362 | IBM CICS TX Advanced 10.1 HTTP Response observable response discrepancy (XFDB-260814)

CVE-2025-40722 | Flatboard Pro up to 3.2.1 /config.php/tags replace cross site scripting

CVE-2024-56901 | Geovision GV-ASWeb up to 6.1.1.0 Account Management cross-site request forgery