Lucene search
K

190 matches found

RedhatCVE
RedhatCVE
added 2026/02/28 1:55 a.m.3 views

CVE-2026-27652

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.5CVSS6AI score0.00313EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/28 1:55 a.m.5 views

CVE-2026-20895

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.5CVSS6AI score0.00356EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/28 1:54 a.m.4 views

CVE-2026-26290

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

9.8CVSS6AI score0.00336EPSS
Exploits0References1
NVD
NVD
added 2026/02/27 1:16 a.m.9 views

CVE-2026-27647

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

9.8CVSS0.00304EPSS
Exploits0References3
NVD
NVD
added 2026/02/27 1:16 a.m.10 views

CVE-2026-26290

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

9.8CVSS0.00336EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/27 12:31 a.m.5 views

EUVD-2026-8936

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.5AI score0.00324EPSS
Exploits0References4
EUVD
EUVD
added 2026/02/27 12:31 a.m.4 views

EUVD-2026-8940

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.5AI score0.00313EPSS
Exploits0References4
EUVD
EUVD
added 2026/02/27 12:31 a.m.5 views

EUVD-2026-8960

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.4AI score0.00313EPSS
Exploits0References4
EUVD
EUVD
added 2026/02/27 12:31 a.m.5 views

EUVD-2026-8932

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS5.5AI score0.00356EPSS
Exploits0References4
CVE
CVE
added 2026/02/27 12:23 a.m.9 views

CVE-2026-27647

Technical details (affected products, versions, and root cause) are not publicly provided in the supplied documents. Monitor for updates from CVE sources and affected vendors.

9.8CVSS5.4AI score0.00304EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/27 12:23 a.m.20 views

CVE-2026-27647 Mobility46 mobility46.se Insufficient Session Expiration

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS0.00304EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/27 12:23 a.m.4 views

CVE-2026-27647

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

9.8CVSS5.8AI score0.00304EPSS
Exploits0References4
NVD
NVD
added 2026/02/27 12:16 a.m.6 views

CVE-2026-25778

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.5CVSS0.00313EPSS
Exploits0References3
NVD
NVD
added 2026/02/27 12:16 a.m.14 views

CVE-2026-25711

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.5CVSS0.00324EPSS
Exploits0References3
NVD
NVD
added 2026/02/27 12:16 a.m.9 views

CVE-2026-20895

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.5CVSS0.00356EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/27 12:13 a.m.2 views

CVE-2026-26290 EV Energy ev.energy Insufficient Session Expiration

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS6AI score0.00336EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/27 12:13 a.m.19 views

CVE-2026-26290 EV Energy ev.energy Insufficient Session Expiration

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.3CVSS0.00336EPSS
Exploits0References3
CVE
CVE
added 2026/02/27 12:13 a.m.11 views

CVE-2026-26290

The CVE-2026-26290 issue affects a WebSocket backend used by charging-station software. It uses charging-station identifiers to bind sessions but allows multiple endpoints to connect with the same session identifier, producing predictable session IDs. This can enable session hijacking/shadowing: ...

9.8CVSS5.4AI score0.00336EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/27 12:13 a.m.3 views

CVE-2026-26290

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

9.8CVSS5.8AI score0.00336EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/27 12:2 a.m.2 views

CVE-2026-25778

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session identifier. This implementation results in predictable session identifiers and enables session hijacking or shadowing, where the most recent...

7.5CVSS5.8AI score0.00313EPSS
Exploits0References4
Rows per page
Query Builder