19139 matches found
EUVD-2025-206226
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
EUVD-2025-206225
Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Authentication Bypass.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
CVE-2025-64124
CVE-2025-64124 is an OS command injection in Nuvation Energy Multi-Stack Controller (MSC). Multiple connected sources (NVD, Red Hat advisories, CIRCL) confirm the issue affects MSC versions prior to 2.5.1 due to improper neutralization of special elements used in OS commands. The vulnerability ex...
CVE-2025-64124 Nuvation Energy Multi-Stack Controller OS Command Injection
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: before 2.5.1...
EUVD-2026-0768
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: before 2.5.1...
PT-2026-1139
Name of the Vulnerable Software and Affected Versions Nuvation Energy Multi-Stack Controller MSC versions prior to 2.5.1 Description A flaw exists in Nuvation Energy Multi-Stack Controller MSC that allows for OS Command Injection due to improper neutralization of special elements used in an OS...
Nuvation Energy Multi-Stack Controller 安全漏洞
The Nuvation Energy Multi-Stack Controller is a control unit within a battery management system from Nuvation Energy, Inc. A security vulnerability exists in Nuvation Energy Multi-Stack Controller versions prior to 2.5.1, which stems from improper neutralization of special elements in operating...
CVE-2025-64123
Unintended Proxy or Intermediary vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Network Boundary Bridging.This issue affects Multi-Stack Controller MSC: through and including release 2.5.1...
CVE-2025-64121
Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Authentication Bypass.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
CVE-2025-64120
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
CVE-2025-64122
Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...
CVE-2025-64120
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Nuvation Energy Multi-Stack Controller MSC allows OS Command Injection.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
CVE-2025-64121
Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Authentication Bypass.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
CVE-2025-64122
Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...
CVE-2025-64123 Nuvation Energy Multi-Stack Controller Proxy service allows arbitrary BMS access
Unintended Proxy or Intermediary vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Network Boundary Bridging.This issue affects Multi-Stack Controller MSC: through and including release 2.5.1...
CVE-2025-64122
CVE-2025-64122 describes an Insufficiently Protected Credentials vulnerability in the Nuvation Energy Multi-Stack Controller (MSC) that enables Signature Spoofing via Key Theft. Affected product: MSC versions up to and including 2.5.1. Root cause and impact are limited to credentials protection a...
CVE-2025-64122 Nuvation Energy Multi-Stack Controller Private Key Stored on Device
Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...
CVE-2025-64121 Nuvation Energy Multi-Stack Controller Authentication Bypass
Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Authentication Bypass.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
CVE-2025-64121 Nuvation Energy Multi-Stack Controller Authentication Bypass
Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Authentication Bypass.This issue affects Multi-Stack Controller MSC: from 2.3.8 before 2.5.1...
CVE-2025-64121
CVE-2025-64121 covers an authentication bypass in the Nuvation Energy Multi-Stack Controller (MSC). Vendor‑documented details indicate impact on MSC versions from 2.3.8 up to, but not including, 2.5.1, with the root cause described as an Authentication Bypass via an alternate path or channel. The...