CVE-2025-15575

Summary

The firmware update functionality does not verify the authenticity of the supplied firmware update files. This allows attackers to flash malicious firmware update files on the device. Initial analysis of the firmware update functionality does not show any cryptographic checks (e.g. digital signature checks) on the supplied firmware update files. Furthermore, ESP32 security features such as secure boot are not used.

Affected Software

VendorProductVersion RangeStatus
SolaX PowerPocket WiFi 3.0<3.022.03affected
SolaX PowerPocket WiFi+LAN<1.009.02affected
SolaX PowerPocket WiFi+4GM<1.005.05affected
SolaX PowerPocket WiFi+LAN 2.0<006.06affected
SolaX PowerPocket WiFi 4.0<003.03affected

Weaknesses

  • CWE-494: CWE-494 Download of Code Without Integrity Check

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References