Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:19 p.m.11 views

CVE-2026-49199

Crafted MQTT messages can trigger command injection, resulting in root-level code execution on the target device...

10CVSS6AI score0.01338EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/29 8:38 a.m.11 views

CVE-2026-49199

Crafted MQTT messages can trigger command injection, resulting in root-level code execution on the target device...

10CVSS6.2AI score0.01338EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/28 3:16 a.m.7 views

CVE-2026-24003

EVerest is an EV charging software stack. In versions up to and including 2025.12.1, it is possible to bypass the sequence state verification including authentication, and send requests that transition to forbidden states relative to the current one, thereby updating the current context with...

5.3CVSS5.8AI score0.00254EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/26 10:12 p.m.4 views

CVE-2026-24003

EVerest is an EV charging software stack. In versions up to and including 2025.12.1, it is possible to bypass the sequence state verification including authentication, and send requests that transition to forbidden states relative to the current one, thereby updating the current context with...

4.3CVSS5.8AI score0.00254EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-20408

Malicious code in bioql PyPI...

8.2CVSS6.6AI score0.00342EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-20409

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00363EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-47816

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00554EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-35507

Malicious code in bioql PyPI...

9.3CVSS8.1AI score0.00312EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/10 7:24 a.m.4 views

CVE-2025-24002

An unauthenticated remote attacker can use MQTT messages to crash a service on charging stations complying with German Calibration Law, resulting in a temporary denial-of-service for these stations until they got restarted by the watchdog...

5.3CVSS7.4AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/10 7:24 a.m.5 views

CVE-2025-24003

An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting in a loss of integrity for only EichrechtAgents and potential denial-of-service for these stations...

8.2CVSS7.4AI score0.00342EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 7:15 a.m.6 views

CVE-2025-24002

An unauthenticated remote attacker can use MQTT messages to crash a service on charging stations complying with German Calibration Law, resulting in a temporary denial-of-service for these stations until they got restarted by the watchdog...

5.3CVSS0.00363EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 7:15 a.m.3 views

CVE-2025-24003

An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting in a loss of integrity for only EichrechtAgents and potential denial-of-service for these stations...

8.2CVSS0.00342EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 6:58 a.m.29 views

CVE-2025-24002

CVE-2025-24002 concerns unauthenticated MQTT-triggered crashes of services on charging stations that comply with the German Calibration Law. The primary sources (NVD, CVE listing, Red Hat advisory, PT Security report, etc.) describe an MQTT-based DoS where a remote attacker can cause the charging...

5.3CVSS6.7AI score0.00363EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.3 views

PT-2025-28341 · Unknown · Eichrechtagents

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law. This results in a loss of integrity for...

8.2CVSS6.3AI score0.00342EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.3 views

PT-2025-28340 · Phoenix Contact · Charx Sec-3000 +7

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated remote attacker can use MQTT messages to crash a service on charging stations complying with German Calibration Law, resulting in a temporary denial-of-service for these...

5.3CVSS6.3AI score0.00363EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 7:8 a.m.16 views

CVE-2024-50695

SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to stack-based buffer overflow when parsing MQTT messages, due to missing MQTT topic bounds checks...

9.8CVSS7.3AI score0.00552EPSS
Exploits0References1
NVD
NVD
added 2025/01/24 11:15 p.m.14 views

CVE-2024-50697

In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when decrypting MQTT messages, the code that parses specific TLV fields does not have sufficient bounds checks. This may result in a stack-based buffer overflow...

8.1CVSS0.00429EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/24 12:0 a.m.29 views

CVE-2024-50695

SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to stack-based buffer overflow when parsing MQTT messages, due to missing MQTT topic bounds checks...

0.00552EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/24 12:0 a.m.9 views

CVE-2024-50695

SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to stack-based buffer overflow when parsing MQTT messages, due to missing MQTT topic bounds checks...

9.7AI score0.00552EPSS
Exploits0References1
CVE
CVE
added 2025/01/24 12:0 a.m.62 views

CVE-2024-50695

CVE-2024-50695 affects SunGrow WiNet-SV200.001.00.P027 and earlier versions. The issue is a stack-based buffer overflow that occurs when parsing MQTT messages due to missing MQTT topic bounds checks. Public sources describe the vulnerability as potentially enabling arbitrary code execution remote...

9.8CVSS7.6AI score0.00552EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder