CVE-2023-35835

An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access point for initial configuration. The WiFi network provided has no network authentication (such as an encryption key) and persists permanently, including after enrollment and setup is complete. The WiFi network serves a web-based configuration utility, as well as an unauthenticated ModBus protocol interface.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
VendorProductVersion
solaxpocket_wifi_3_firmware
3.0.0 ≤
𝑥
≤ 3.009.03_20230504
𝑥
= Vulnerable software versions
References
https://www.solaxpower.com/downloads/
https://www.solaxpower.com/help/upgrading-the-pocket-wifi-firmware/
https://yougottahackthat.com/blog/
https://yougottahackthat.com/blog/1370/solax-inverters-pocket-wifi-using-poor-authentication
https://www.solaxpower.com/downloads/
https://www.solaxpower.com/help/upgrading-the-pocket-wifi-firmware/
https://yougottahackthat.com/blog/
https://yougottahackthat.com/blog/1370/solax-inverters-pocket-wifi-using-poor-authentication