Vulnerability Database

314,373

Total vulnerabilities in the database

CVE-2025-36752

Growatt ShineLan-X communication dongle has an undocumented backup account with undocumented credentials which allows significant level access to the device, such as allowing any attacker to access the Setting Center. This means that this is effectively backdoor for all devices utilizing a Growatt ShineLan-X communication dongle.

Published: Dec 13, 2025
Updated: Dec 17, 2025
CVE: CVE-2025-36752
Exploit:

No technical information available.

CWEs:

CWE-798

Affected Software
References

No affected software listed.

https://csirt.divd.nl/CVE-2025-36752/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo