12 matches found
CVE-2026-8980
The Mennekes Amtron series firmware versions ≤ 5.22.3 is vulnerable to privilege escalation. An authenticated low-privileged user can change the passwords of the admin operator and manufacturer accounts via crafted POST requests...
CVE-2026-8980
The Mennekes Amtron series firmware versions ≤ 5.22.3 is vulnerable to privilege escalation. An authenticated low-privileged user can change the passwords of the admin operator and manufacturer accounts via crafted POST requests...
CVE-2026-8980 Privilege Escalation
The Mennekes Amtron series firmware versions ≤ 5.22.3 is vulnerable to privilege escalation. An authenticated low-privileged user can change the passwords of the admin operator and manufacturer accounts via crafted POST requests...
CVE-2026-8980 Privilege Escalation
The Mennekes Amtron series firmware versions ≤ 5.22.3 is vulnerable to privilege escalation. An authenticated low-privileged user can change the passwords of the admin operator and manufacturer accounts via crafted POST requests...
CVE-2026-8980
The CVE-2026-8980 entry concerns the Mennekes Amtron series with firmware versions ≤ 5.22.3. Affected component: firmware handling privilege levels. The vulnerability allows an authenticated low-privileged user to escalate privileges by issuing crafted POST requests to change passwords for admin ...
EUVD-2025-27116
Malicious code in bioql PyPI...
CVE-2025-41682
An authenticated, low-privileged attacker can obtain credentials stored on the charge controller including the manufacturer password...
CVE-2025-41682
An authenticated, low-privileged attacker can obtain credentials stored on the charge controller including the manufacturer password...
CVE-2025-41682 Credential Disclosure via Insecure Storage on Charge Controller
An authenticated, low-privileged attacker can obtain credentials stored on the charge controller including the manufacturer password...
CVE-2025-41682 Credential Disclosure via Insecure Storage on Charge Controller
An authenticated, low-privileged attacker can obtain credentials stored on the charge controller including the manufacturer password...
CVE-2025-41682
CVE-2025-41682 affects Bender GmbH & Co. KG charge controllers (e.g., CC612, CC613, ICC15xx). An authenticated, low-privileged attacker can access credentials stored on the device, including the manufacturer password, via insecure storage. Documents indicate this is a credential-disclosure vulner...
PT-2025-36444
Name of the Vulnerable Software and Affected Versions: Bender GmbH & Co. KG charge controllers affected versions not specified Description: An authenticated, low-privileged attacker can obtain credentials stored on the charge controller, including the manufacturer password. Recommendations: At th...