SunPower Corporation A.I CyberSecurity Scoring
SunPower Corporation
Company Information
Website:http://us.sunpower.com
Employees number:3,471
Number of followers:198,934
NAICS:541391
Industry Type:Services for Renewable Energy
Homepage:sunpower.com
SunPower Corporation Risk Score (AI oriented)
Between 700 and 749
SunPower CorporationServices for Renewable Energy
Updated:
10/03/2026
10/03/2026
748/1000
Moderate
Ba
SunPower Corporation Global Score (TPRM)
xxxx
SunPower CorporationServices for Renewable Energy
Score locked

SunPower CorporationModerate
Current Score
748Ba (MODERATE)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
748
JUNE 2026
748
MAY 2026
748
APRIL 2026
748
MARCH 2026
748
FEBRUARY 2026
748
JANUARY 2026
748
DECEMBER 2025
748
NOVEMBER 2025
748
OCTOBER 2025
748
SEPTEMBER 2025
748
AUGUST 2025
747
JUNE 2025
748
Vulnerability
16 Jun 2025 • SunPower Corporation
SunPower
Critical Authentication Bypass Vulnerability in SunPower PVS6 Photovoltaic Inverters (CVE-2025-9696)
747
CRITICAL-1
SUN457090325
A critical vulnerability (CVE-2025-9696, CVSS v4: 9.4) in SunPower’s PVS6 photovoltaic inverters allows attackers within 100 meters via Bluetooth Low Energy (BLE) to bypass authentication using hard-coded encryption keys, gaining full administrative control. Exploiting this flaw enables adversaries to replace firmware with malicious backdoors, disable power production, or alter grid-tie settings, risking grid instability, unsafe operating conditions, or forced offline states. Attackers can also establish persistent remote access via SSH tunnels, modify firewall rules to expose connected energy-storage systems, and compromise environmental sensors.The vulnerability affects global deployments across residential, commercial, and utility-scale sites in North America, Europe, Asia, and Australia, threatening critical energy infrastructure. All PVS6 units running firmware ≤ 2025.06 build 61839 are vulnerable. SunPower’s lack of coordination with CISA before disclosure exacerbates risks, leaving operators to implement emergency mitigations—such as network isolation, BLE range restrictions, and VPN-enforced remote access—while awaiting patches. Though no public exploitation is confirmed, the low attack complexity and high potential for economic/systems disruption demand urgent action to prevent large-scale energy sector compromise.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for SunPower Corporation ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in June 2026 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in May 2026 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in April 2026 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in March 2026 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in February 2026 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in January 2026 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in December 2025 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in November 2025 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in October 2025 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in September 2025 ??
What was SunPower Corporation's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on SunPower Corporation's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with SunPower Corporation ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view SunPower Corporation's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?