You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
sunpower
About this tag
The SunPower tag on WindowsForum.com covers discussions about security vulnerabilities in SunPower solar equipment, particularly the PVS6 inverter. A recent thread highlights CVE-2025-9696, a critical Bluetooth Low Energy flaw with a CVSS score of 9.4 that allows attackers within Bluetooth range to gain full servicing access, potentially enabling firmware replacement, power disruption, and network manipulation. The advisory affects PVS6 units on firmware 2025.06 build 61839 and prior. This tag is relevant for IT professionals and system administrators managing SunPower devices who need to understand and mitigate these security risks.
The SunPower PVS6 fleet has been publicly flagged as critically vulnerable after CISA published an advisory (ICSA-25-245-03) describing a Bluetooth Low Energy (BluetoothLE) servicing interface that embeds hard‑coded encryption parameters and exposed protocol details—weaknesses that let an...