EVlink City, EVlink Parking, EVlink Smart Wallbox Cross-Site Scripting Vulnerability (CNVD-2021-62163)

2021-07-2600:00:00

China National Vulnerability Database

www.cnvd.org.cn

0.001 Low

EPSS

Percentile

22.9%

JSON

Schneider Electric EVlink City and others are a charging solution for electric vehicle charging stations from Schneider Electric (France). EVlink City, EVlink Parking, and EVlink Smart Wallbox have a cross-site scripting vulnerability that vulnerability stems from the potential to cause code injection when importing CSV files or changing station parameters. No details of the vulnerability are available at this time.

CPENameOperatorVersion
schneider electric evlink city（evc1s22p4 / evc1s7p4） <r8 v3.eq4.0.1
schneider electric evlink parking（evw2 / evf2 / ev.2 ） <r8 v3.eq4.0.1
schneider electric evlink smart wallbox（evb1a） <r8 v3.eq4.0.1

Name	Operator	Version
schneider electric evlink city（evc1s22p4 / evc1s7p4） <r8 v3.	eq	4.0.1
schneider electric evlink parking（evw2 / evf2 / ev.2 ） <r8 v3.	eq	4.0.1
schneider electric evlink smart wallbox（evb1a） <r8 v3.	eq	4.0.1

0.001 Low

EPSS

Percentile

22.9%

JSON

Related for CNVD-2021-62163