3 matches found
CVE-2020-8006
The server in Circontrol Raption through 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root. The ocpp1.5 and pwrstudio binaries on the charging station do not use a number of common exploitation mitigations. In...
CVE-2020-8006
CVE-2020-8006 affects Circontrol Raption servers up to version 5.11.2. The vulnerability is a pre-authentication, stack-based buffer overflow in the server when processing HTTP Basic-Authentication header data (base64 decode path), with the output buffer on the stack. Impact is root-level executi...
Circontrol Raption Buffer Overflow / Command Injection
Circontrol EV Charger vulnerabilities. 1. CVE-2020-8006 Pre-Auth Stack Based Buffer Overflow CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 10 The server in Circontrol Raption through 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the...