20 matches found
CVE-2023-49957
An issue was discovered in Dalmann OCPP.Core before 1.3.0 for OCPP Open Charge Point Protocol for electric vehicles. It permits multiple transactions with the same connectorId and idTag, contrary to the expected ConcurrentTx status. This could result in critical transaction management and billing...
CVE-2023-49958
An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. The server processes mishandle StartTransaction messages containing additional, arbitrary properties, or duplicate properties. The last occurrence of a duplicate property is...
CVE-2023-49956
An issue was discovered in Dalmann OCPP.Core before 1.3.0 for OCPP Open Charge Point Protocol for electric vehicles. A StopTransaction message with any random transactionId terminates active transactions...
CVE-2023-49956
An issue was discovered in Dalmann OCPP.Core before 1.3.0 for OCPP Open Charge Point Protocol for electric vehicles. A StopTransaction message with any random transactionId terminates active transactions...
CVE-2023-49958
An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. The server processes mishandle StartTransaction messages containing additional, arbitrary properties, or duplicate properties. The last occurrence of a duplicate property is...
CVE-2023-49958
An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. The server processes mishandle StartTransaction messages containing additional, arbitrary properties, or duplicate properties. The last occurrence of a duplicate property is...
CVE-2023-49955
An issue was discovered in Dalmann OCPP.Core before 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. It does not validate the length of the chargePointVendor field in a BootNotification message, potentially leading to server instability and a denial of service when processing...
Open redirect
An issue was discovered in Dalmann OCPP.Core before 1.3.0 for OCPP Open Charge Point Protocol for electric vehicles. It permits multiple transactions with the same connectorId and idTag, contrary to the expected ConcurrentTx status. This could result in critical transaction management and billing...
CVE-2023-49958
An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. The server processes mishandle StartTransaction messages containing additional, arbitrary properties, or duplicate properties. The last occurrence of a duplicate property is...
CVE-2023-49955
An issue was discovered in Dalmann OCPP.Core before 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. It does not validate the length of the chargePointVendor field in a BootNotification message, potentially leading to server instability and a denial of service when processing...
CVE-2023-49956
Summary: CVE-2023-49956 affects Dalmann OCPP.Core prior to 1.3.0 . A vulnerability allows a StopTransaction message with any random transactionId to terminate active transactions. Impact : termination of ongoing transactions on affected deployments. Affected versions : Dalmann OCPP.Core before 1....
CVE-2023-49958
An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP Open Charge Point Protocol for electric vehicles. The server processes mishandle StartTransaction messages containing additional, arbitrary properties, or duplicate properties. The last occurrence of a duplicate property is...
Dalmann OCPP.Core Security Vulnerability
Dalmann OCPP.Core is an OCPP Open Charge Point Protocol server written in .NET 6 by Ulrich Individual Developers. A security vulnerability exists in Dalmann OCPP.Core versions prior to 1.2.0, which stems from the server mishandling StartTransaction messages containing additional, arbitrary, or...
CVE-2023-49956
An issue was discovered in Dalmann OCPP.Core before 1.3.0 for OCPP Open Charge Point Protocol for electric vehicles. A StopTransaction message with any random transactionId terminates active transactions...
CVE-2023-49955
CVE-2023-49955 affects Dalmann OCPP.Core prior to 1.2.0. The vulnerability arises from not validating the length of the chargePointVendor field in a BootNotification message, which can cause server instability and a denial of service when processing excessively large inputs. The issue is document...
CVE-2023-49958
Summary (CVE-2023-49958): Dalmann OCPP.Core (up to version 1.2.0) mishandles StartTransaction messages that include extra or duplicate properties; the last duplicate property is accepted, which may enable tampering with transaction records and affect system integrity. Affected product: Dalmann OC...
PT-2023-31423 · Dalmann · Ocpp.Core
Name of the Vulnerable Software and Affected Versions: Dalmann OCPP.Core versions prior to 1.3.0 Description: An issue was discovered in Dalmann OCPP.Core for OCPP Open Charge Point Protocol for electric vehicles. It permits multiple transactions with the same connectorId and idTag, contrary to t...
Dalmann OCPP.Core Security Vulnerability
Dalmann OCPP.Core is an OCPP Open Charge Point Protocol server written in .NET 6 by Ulrich Personal Developer. A security vulnerability exists in Dalmann OCPP.Core versions prior to 1.3.0, which stems from the server allowing an attacker to stop a transaction using a Random Transaction ID...
CVE-2023-49957
CVE-2023-49957 affects Dalmann OCPP.Core prior to 1.3.0. The issue allows multiple transactions using the same connectorId and idTag, violating ConcurrentTx expectations and potentially causing billing/transaction management errors. Affected software: Dalmann OCPP.Core (
PT-2023-31422 · Dalmann · Ocpp.Core
Name of the Vulnerable Software and Affected Versions: Dalmann OCPP.Core versions prior to 1.3.0 Description: An issue was discovered in Dalmann OCPP.Core for OCPP Open Charge Point Protocol for electric vehicles. A StopTransaction message with any random transactionId terminates active...