SolarWinds has issued a security advisory for its SolarWind Power Panel Security software, which allows users to control and disable solar panels.
The security update was issued on Tuesday to address a vulnerability that could allow attackers to remotely disable solar panel security features, as well as a security vulnerability in how the software handles data, which could allow an attacker to gain access to a system remotely.
SolarWinds is offering a free upgrade for affected customers for up to 180 days, or a $9.99 annual subscription.
The security update is only applicable to SolarWinders own and managed servers, so customers should check the version number in the Software Update tab of their account to ensure it is up to date.
SolarWind has yet to provide an exact patch, but noted that the vulnerability could be exploited by hackers to “attack and destroy data, or execute code remotely to gain control over a system.”
The company has already taken steps to address the issue by encrypting the data that could be affected.
A similar vulnerability in the panel security module was exploited in the April hack of the European Parliament’s Data Security and Privacy Service.
In June, security researchers disclosed the vulnerability in SolarWind’s panel security software.
In that case, a malicious attacker could take over a compromised system and gain control of a system via remote code execution.