7 matches found
CVE-2026-22539
As the service interaction is performed without authentication, an attacker with some knowledge of the protocol could obtain information about the charger via OCPP v1.6...
CVE-2026-22539
CVE-2026-22539 describes an information disclosure in OCPP v1.6 where service interactions occur without authentication, allowing an attacker with protocol knowledge to obtain charger information. Red Hat, NVD, CVE List and other sources corroborate that the issue affects Efacec QC charging posts...
Efacec QC 安全漏洞
Efacec QC is a series of electric vehicle charging posts from Efacec Portugal. A security vulnerability exists in the Efacec QC 60/90/120 that stems from a service interaction without authentication, which could lead to an attacker obtaining charger information via the OCPP v1.6 protocol...
CVE-2025-31945
An unauthenticated attacker can obtain other users' charger information...
CVE-2025-31945
An unauthenticated attacker can obtain other users' charger information...
CVE-2025-31945 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
An unauthenticated attacker can obtain other users' charger information...
PT-2025-16494 · Growatt · Cloud Portal
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated attacker can obtain other users' charger information. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...