HIGH
SolisCloud
CVE published 2025-12-04
CVE-2025-13932
CVE-2025-13932 is a HIGH-severity (CVSS 7.7) Broken Access Control vulnerability in the SolisCloud Monitoring Platform, specifically an Insecure Direct Object Reference (IDOR) in the Cloud API & Device Control API. Published on 2025-12-04, this vulnerability allows any authenticated user to access detailed data of any plant by manipulating the plant_id parameter in API requests. The vulnerability has a ne [truncated]