- What is the severity of CVE-2025-26857?
- CVE-2025-26857 has been scored as a medium severity vulnerability.
- How to fix CVE-2025-26857?
- To fix CVE-2025-26857: Growatt reports the cloud-based vulnerabilities were patched and no user action is needed. Additionally, Growatt strongly recommends that their users take proactive steps in securing their devices and take the following actions: * Update all devices to the latest firmware version when available. (Updates are automatic, no user action needed.) * Use strong passwords and enable multi-factor authentication where applicable. * Report any security concerns to Service@Growatt.com. * Stay vigilant. Users and installers should regularly review security settings, follow best practices, and report any unusual activity.
- Is CVE-2025-26857 being actively exploited in the wild?
- As for now, there are no information to confirm that CVE-2025-26857 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
- What software or system is affected by CVE-2025-26857?
- CVE-2025-26857 affects Growatt Cloud portal.