SunPower PVS6

Source: All CISA Advisories | Added:

The SunPower PVS6 has a critical vulnerability due to the use of hard-coded credentials in its BluetoothLE interface, allowing attackers within range to gain full access to the device. This could lead to severe consequences, including firmware replacement and manipulation of connected devices.

---

Impact: SunPower PVS6: Versions 2025.06 build 61839 and prior

In the Wild: No

Age: Newly disclosed

Remediation: Minimize network exposure for all control system devices, use firewalls, and implement secure remote access methods like VPNs.

Read Full Original Article →