CVE-2025-31945 – An unauthenticated attacker can access other us... (How to Fix)

Q: What is the severity of CVE-2025-31945?

CVE-2025-31945 has a CVSS score of 5.3 (MEDIUM). An unauthenticated attacker can access other users' charger information through an authorization bypass vulnerability. This affects systems with vulnerable charging management software where user data isolation fails. Organizations using affected charging infrastructure products are at risk.

📋 TL;DR

An unauthenticated attacker can access other users' charger information through an authorization bypass vulnerability. This affects systems with vulnerable charging management software where user data isolation fails. Organizations using affected charging infrastructure products are at risk.

💻 Affected Systems

Products:

Charging management systems from affected vendors

Versions: Specific versions not detailed in advisory

Operating Systems: Not specified, likely embedded systems

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems with web interfaces or APIs for charger management. Exact product names may be detailed in vendor-specific advisories.

📦 What is this software?

Cloud Portal by Growatt

View all CVEs affecting Cloud Portal →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could map charging infrastructure, identify usage patterns, and potentially combine with other vulnerabilities for further attacks on energy systems.

🟠

Likely Case

Unauthorized access to charger location, status, and user association data, enabling reconnaissance and privacy violations.

🟢

If Mitigated

Limited information disclosure with no direct system compromise if proper network segmentation and access controls are implemented.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

CWE-639 indicates authorization bypass through user-controlled key, suggesting simple HTTP requests may trigger the vulnerability.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check vendor-specific advisories

Vendor Advisory: https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-04

Restart Required: Yes

Instructions:

1. Identify affected products from ICSA-25-105-04. 2. Contact vendor for specific patch. 3. Apply vendor-provided updates. 4. Restart affected systems. 5. Verify fix implementation.

🔧 Temporary Workarounds

Network segmentation

all

Isolate charging management systems from untrusted networks

Access control restrictions

all

Implement strict firewall rules to limit access to management interfaces

🧯 If You Can't Patch

Implement network segmentation to isolate charging systems from internet
Deploy web application firewall with authorization bypass detection rules

🔍 How to Verify

Check if Vulnerable:

Test if unauthenticated requests can access charger information intended for other users via API/web interface

Check Version:

Vendor-specific command; check system administration interface

Verify Fix Applied:

Verify patch version installed and retest vulnerability with same unauthenticated requests

📡 Detection & Monitoring

Log Indicators:

Unauthenticated requests to charger information endpoints
Access patterns showing cross-user data retrieval

Network Indicators:

Unusual API calls to charger data endpoints from unauthenticated sources

SIEM Query:

source_ip NOT IN authenticated_users AND uri CONTAINS '/charger/' AND (uri CONTAINS '/info' OR uri CONTAINS '/status')

📊 Metadata

CVE ID: CVE-2025-31945

CVSS v3 Score: 5.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE: CWE-639

EPSS Score: 0.27% exploit probability (50.3th percentile)

Published: April 15, 2025

Last Updated: November 12, 2025

🔗 References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-04 Mitigation,Third Party Advisory,US Government Resource

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-31945, you might also want to check these: