CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-36746

SolarEdge monitoring platform contains a Cross‑Site Scripting (XSS) flaw that allows an authenticated user to inject payloads into report names, which may execute in a victim’s browser during a deletion attempt.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.4%

CVSS Severity

CVSS v3 Score 5.4

References

https://csirt.divd.nl/CVE-2025-36746
https://csirt.divd.nl/DIVD-2025-00022/

Products affected by CVE-2025-36746

Solaredge » Solaredge Monitoring Platform » Version: N/A

cpe:2.3:a:solaredge:solaredge_monitoring_platform:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36746

Products

Pricing

Contact Us