Primary

Context

Papendorf SOL Connect Center Missing Authentication Vulnerability in Web Interface

Vulnerability

A vulnerability exists in Papendorf SOL Connect Center version 3.3.0.0, specifically within the Web Interface component. This vulnerability is characterized by missing authentication, allowing unauthenticated attackers to remotely access sensitive operational data from the photovoltaic monitoring system. The issue arises from inadequate authentication and authorization controls, enabling access to real-time and historical power generation data, as well as the operational status of individual inverters.

Impact

Exploitation of this vulnerability allows unauthorized users to retrieve sensitive data from the PV monitoring system, including detailed power generation statistics and the operational status of inverters, which can reveal performance metrics and potential faults.

Remediation

It is recommended to implement firewall rules to restrict access to the vulnerable web interface.

Added: Jun 9, 2025, 10:20 AM

Updated: Jun 9, 2025, 12:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.2

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.2

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Papendorf SOL Connect Center Missing Authentication Vulnerability in Web Interface

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating