MQTT Server Vulnerability in SolaX Power Devices
CVE-2025-15574

6.5MEDIUM

Key Information:

Vendor: Solax Power
Status: Pocket Wifi 3.0; Pocket Wifi+lan; Pocket Wifi+4gm; Pocket Wifi+lan 2.0
Vendor: CVE Published:; 12 February 2026

🔔 Create Solax Power Vulnerability Alert

What is CVE-2025-15574?

A vulnerability exists in SolaX Power devices that enables attackers to exploit the MQTT server by using the 'registration number' as the username. This 10-character identifier, visible on the SolaX Power Pocket device, allows unauthorized users to gain access by leveraging a flawed password generation process that utilizes a proprietary XOR/transposition algorithm. As a result, individuals familiar with these registration numbers can impersonate legitimate devices, posing significant risks to the integrity and security of connected IoT systems.

Affected Version(s)

Pocket WiFi 3.0 <3.022.03

Pocket WiFi 4.0 <003.03

Pocket WiFi+4GM <1.005.05

References

https://r.sec-consult.com/solax

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 12, 2026
Vulnerability Reserved
Feb 9, 2026

Credit

Stefan Viehböck, SEC Consult Vulnerability Lab

CVE-2025-15574 Data

JSON