Tigo Energy Cloud Connect Advanced

Source: All CISA Advisories | Added:

Tigo Energy's Cloud Connect Advanced device has multiple critical vulnerabilities, including hard-coded credentials, command injection, and predictable session ID generation, which could allow unauthorized access and control over solar energy systems. These vulnerabilities pose significant risks, including data exposure and service disruptions.

---

Impact: Cloud Connect Advanced: Versions 4.0.1 and prior

In the Wild: No

Age: Newly disclosed

Remediation: Tigo Energy is working on a fix; users are advised to minimize network exposure and use secure remote access methods.

Read Full Original Article →