CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-21241

Malware in sbrugna...

7.8CVSS7.6AI score0.00127EPSS

NVD•added 2022/04/27 4:15 p.m.•9 views

CVE-2021-34602

In Bender/ebee Charge Controllers in multiple versions are prone to Command injection via Web interface. An authenticated attacker could enter shell commands into some input fields that are executed with root privileges...

8.8CVSS0.03436EPSS

NVD•added 2022/04/27 4:15 p.m.•7 views

CVE-2021-34591

In Bender/ebee Charge Controllers in multiple versions are prone to Local privilege Escalation. An authenticated attacker could get root access via the suid applications socat, ip udhcpc and ifplugd...

7.8CVSS0.00127EPSS

NVD•added 2022/04/27 4:15 p.m.•11 views

CVE-2021-34592

In Bender/ebee Charge Controllers in multiple versions are prone to Command injection via Web interface. An authenticated attacker could enter shell commands into some input fields...

8.8CVSS0.03027EPSS

NVD•added 2022/04/27 4:15 p.m.•12 views

CVE-2021-34587

In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...

5.3CVSS0.00305EPSS

NVD•added 2022/04/27 4:15 p.m.•10 views

CVE-2021-34588

In Bender/ebee Charge Controllers in multiple versions are prone to unprotected data export. Backup export is protected via a random key. The key is set at user login. It is empty after reboot...

8.6CVSS0.0028EPSS

OSV•added 2022/04/27 4:15 p.m.•1 views

CVE-2021-34587

In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...

5.3CVSS5.8AI score0.00305EPSS

NVD•added 2022/04/27 4:15 p.m.•9 views

CVE-2021-34589

In Bender/ebee Charge Controllers in multiple versions are prone to an RFID leak. The RFID of the last charge event can be read without authentication via the web interface...

7.5CVSS0.003EPSS

OSV•added 2022/04/27 4:15 p.m.•1 views

CVE-2021-34589

In Bender/ebee Charge Controllers in multiple versions are prone to an RFID leak. The RFID of the last charge event can be read without authentication via the web interface...

7.5CVSS5.8AI score

Prion•added 2022/04/27 4:15 p.m.•11 views

Command injection

6.5CVSS8.8AI score0.03436EPSS

Exploits0References1Affected Software2

Prion•added 2022/04/27 4:15 p.m.•10 views

Command injection

In Bender/ebee Charge Controllers in multiple versions are prone to Command injection via Web interface. An authenticated attacker could enter shell commands into some input fields...

6.5CVSS8.7AI score0.03027EPSS

Exploits0References1Affected Software2

Prion•added 2022/04/27 4:15 p.m.•11 views

Stack overflow

In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...

5CVSS5.2AI score0.00305EPSS

Exploits0References1Affected Software5

5.3CVSS6AI score0.00305EPSS

Bender ebee 充电控制器缓冲区错误漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from a long URL that could cause the web server to crash. An attacker can exploit this vulnerability to bypass credential checks and elevate privileges. The following...

5.4CVSS5.2AI score0.00347EPSS

Bender ebee 充电控制器跨站脚本漏洞

ebee is a charge controller from Bender. A cross-site scripting vulnerability exists in the Bender ebee Charge Controller that stems from easy cross-site scripting. An authenticated attacker could write HTML code to configuration values. These values are not properly escaped when displayed. The...

CNNVD•added 2022/04/27 12:0 a.m.•0 views

Bender ebee 充电控制器命令注入漏洞

The ebee is a charge controller from Bender. The Bender ebee Charge Controller suffers from a command injection vulnerability that stems from easy command injection via the web interface. An authenticated attacker could enter shell commands in certain input fields. The following products and...

8.8CVSS8.1AI score0.03027EPSS

CNNVD•added 2022/04/27 12:0 a.m.•2 views

Bender ebee 充电控制器信任管理问题漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from the susceptibility to hard-coded credentials. An attacker may be able to use a password to gain administrative access to the Web UI. The following products and version...

9.8CVSS8.3AI score0.00408EPSS

7.8CVSS7.5AI score0.00127EPSS

Bender ebee 充电控制器安全漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from an easy local privilege escalation. An authenticated attacker can gain root access via the suid application socat, ip udhcpc, and ifplugd. The following products and...

8.8CVSS8.2AI score0.03436EPSS

Bender ebee 充电控制器操作系统命令注入漏洞

The ebee is a charge controller from Bender. The Bender ebee Charge Controller suffers from an operating system command injection vulnerability that stems from easy command injection via the web interface. An authenticated attacker could enter shell commands into certain input fields executed wit...

8.6CVSS8AI score0.0028EPSS

Bender ebee 充电控制器安全漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from an unprotected data export. The backup export is protected by a random key. The key is set at user login. It is empty after a reboot. An attacker can exploit this...