Skip to main content

Severity by source

NVD PRIMARY
5.9 MEDIUM
CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Adjacent
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

3
CVSS changed
May 12, 2026 - 10:22 NVD
6.0 (MEDIUM) 5.9 (MEDIUM)
Analysis Generated
May 12, 2026 - 10:05 vuln.today
CVE Published
May 12, 2026 - 08:21 nvd
MEDIUM 6.0

DescriptionCVE.org

A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions), blueplanet 110 TL3 (All versions), blueplanet 125 NX3 M11 (All versions), blueplanet 125 TL3 (All versions), blueplanet 125 TL3 GEN2 (All versions), blueplanet 137 TL3 (All versions), blueplanet 150 TL3 (All versions), blueplanet 150 TL3 GEN2 (All versions), blueplanet 155 TL3 (All versions), blueplanet 155 TL3 GEN2 (All versions), blueplanet 165 TL3 (All versions), blueplanet 165 TL3 GEN2 (All versions), blueplanet 25.0 NX3-33.0 NX3 (All versions), blueplanet 3.0 NX3-20.0 NX3 (All versions), blueplanet 3.0-5.0 NX1 (All versions), blueplanet 360 NX3 M6 (All versions), blueplanet 50.0 NX3-60.0 NX3 (All versions), blueplanet 87.0 TL3 (All versions), blueplanet 87.0 TL3 GEN2 (All versions), blueplanet 92.0 TL3 (All versions), blueplanet 92.0 TL3 GEN2 (All versions), blueplanet gridsafe 110 TL3-S (All versions), blueplanet gridsafe 137 TL3-S (All versions), blueplanet gridsafe 92.0 TL3-S (All versions), blueplanet hybrid 10.0 TL3 (All versions), blueplanet hybrid 6.0 NH3-12.0 NH3 (All versions). Improper neutralization of special elements used in an sql command ('sql injection') in KACO Meteor server allows an authorized attacker to elevate privileges over a local network.

AnalysisAI

SQL injection in KACO Meteor server affecting all versions of blueplanet inverter product line allows authorized attackers on the local network to elevate privileges and modify system data. The vulnerability requires high-privilege credentials and abnormal configuration access (AC:H), limiting exploitation to insider threats or attackers who have already compromised administrative access. CVSS 6.0 with integrity and availability impact reflects significant risk within trusted network environments.

Technical ContextAI

CWE-89 SQL injection vulnerability exists in the KACO Meteor server component, which manages multiple blueplanet inverter product series (NX3, TL3, NH3, NX1 variants and gridsafe/hybrid models). The server fails to properly neutralize special SQL characters in user-supplied input before executing database queries, enabling an attacker with high-privilege local network access to craft malicious SQL commands. The attack vector is adjacent network (AV:A), indicating the attacker must be on the same local network segment as the Meteor server, not remotely exploitable over the internet.

RemediationAI

Apply the security update available from Siemens for the KACO Meteor server component affecting blueplanet inverters; consult the Siemens security advisory at https://cert-portal.siemens.com/productcert/html/ssa-545643.html for the specific patched firmware version applicable to your inverter model and generation. Until patching is complete, implement network segmentation by restricting local network access to the Meteor server to only authorized maintenance personnel and administrative systems, using VLAN isolation or firewall rules to limit which systems can reach inverter management interfaces. Disable remote management protocols if not actively required for operations, and enforce strong authentication controls for any accounts with administrative access to inverter systems. Monitor access logs for the Meteor server component for suspicious SQL patterns in command history or unusual privilege escalation attempts within the inverter management interface.

Share

CVE-2026-41125 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy