Critical severity9.8NVD Advisory· Published Jan 23, 2024· Updated Jun 17, 2026
CVE-2023-35835
CVE-2023-35835
Description
An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access point for initial configuration. The WiFi network provided has no network authentication (such as an encryption key) and persists permanently, including after enrollment and setup is complete. The WiFi network serves a web-based configuration utility, as well as an unauthenticated ModBus protocol interface.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SolaX/Pocket WiFidescription
- Range: <=3.001.02
Patches
Vulnerability mechanics
References
4- yougottahackthat.com/blog/nvdThird Party Advisory
- yougottahackthat.com/blog/1370/solax-inverters-pocket-wifi-using-poor-authenticationnvdThird Party Advisory
- www.solaxpower.com/downloads/nvdNot Applicable
- www.solaxpower.com/help/upgrading-the-pocket-wifi-firmware/nvdNot Applicable
News mentions
0No linked articles in our index yet.