soliscloud

The soliscloud tag on WindowsForum.com covers discussions about the SolisCloud Monitoring Platform, a cloud-based system for managing solar energy plants. Recent content highlights a critical security vulnerability, CVE-2025-13932, which involves an Insecure Direct Object Reference (IDOR) in the Cloud API and Device Control API. This flaw allows authenticated users to access data from any plant by manipulating the plant_id parameter, posing a high risk to data confidentiality. The vulnerability has been assigned high CVSS scores and has been flagged by CISA. Users discussing soliscloud here focus on security risks, API access controls, and mitigation strategies for this and related issues.