Lucene search
K

32 matches found

Cvelist
Cvelist
added 2026/06/25 8:56 p.m.21 views

CVE-2026-54479 EVoke Systems EVoke CSMS Insufficient Session Expiration

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers. This vulnerability may allow unauthorized users to authenticate as oth...

7.3CVSS0.00246EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/25 8:56 p.m.7 views

CVE-2026-54479

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers. This vulnerability may allow unauthorized users to authenticate as oth...

7.3CVSS5.9AI score0.00246EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.4 views

CVE-2026-32663

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.8AI score0.0025EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/21 12:31 a.m.4 views

EUVD-2026-13859

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.8AI score0.0025EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.7 views

PT-2026-26700

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.8AI score0.0025EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/07 7:31 p.m.6 views

CVE-2026-27777

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

6.9CVSS5.8AI score0.00243EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/06 6:31 p.m.4 views

EUVD-2026-10031

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.8AI score0.00252EPSS
Exploits0References3
NVD
NVD
added 2026/03/06 4:16 p.m.12 views

CVE-2026-27764

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

8.6CVSS0.00295EPSS
Exploits0References3
NVD
NVD
added 2026/03/06 4:16 p.m.12 views

CVE-2026-27027

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

6.9CVSS0.00222EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/06 3:20 p.m.31 views

CVE-2026-27027 Everon api.everon.io Insufficiently Protected Credentials

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

6.9CVSS0.00222EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/06 3:9 p.m.5 views

CVE-2026-27777

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

6.9CVSS5.8AI score0.00243EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/06 12:31 a.m.8 views

EUVD-2026-9940

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS6AI score0.00386EPSS
Exploits0References4
NVD
NVD
added 2026/03/06 12:16 a.m.11 views

CVE-2026-24912

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

8.6CVSS0.00386EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.8 views

PT-2026-23711

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.8AI score0.00252EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.7 views

PT-2026-23715

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

6.9CVSS5.8AI score0.00222EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/05 11:39 p.m.34 views

CVE-2026-27770 ePower epower.ie Insufficiently Protected Credentials

Charging station authentication identifiers are publicly accessible via web-based mapping platforms...

6.9CVSS0.00294EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/05 11:38 p.m.4 views

CVE-2026-24912 ePower epower.ie Insufficient Session Expiration

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.8AI score0.00386EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/28 1:55 a.m.6 views

CVE-2026-27647

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

9.8CVSS6AI score0.00304EPSS
Exploits0References1
NVD
NVD
added 2026/02/27 1:16 a.m.10 views

CVE-2026-26290

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

9.8CVSS0.00336EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/27 12:23 a.m.22 views

CVE-2026-27647 Mobility46 mobility46.se Insufficient Session Expiration

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS0.00304EPSS
Exploits0References3
Rows per page
Query Builder