10 matches found
EVerest 安全漏洞
EVerest is an open-source firmware for electric vehicle charging stations developed by EVerest. Versions of EVerest prior to 2026.02.0 contained security vulnerabilities. These vulnerabilities stemmed from delayed authorization responses during RemoteStop processing, allowing the authorization...
LITEON IC48A and IC80A EV Chargers
RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to access sensitive information when accessing the Liteon EV chargers. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:...
CVE-2025-31147 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
Unauthenticated attackers can query information about total energy consumed by EV chargers of arbitrary users...
CVE-2025-26857
CVE-2025-26857 affects Growatt Cloud Applications (vulnerable through 3.6.0 and earlier according to CNNVD). The flaw allows an unauthenticated attacker to rename arbitrary devices owned by any user (notably EV chargers) by exploiting insufficient input validation. Multiple connected sources (Red...
PT-2025-16484
Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description Unauthenticated attackers can rename arbitrary devices of arbitrary users, specifically EV chargers. Recommendations At the moment, there is no information about a newer version that contains ...
CVE-2024-43659 Plaintext default credentials in firmware
After gaining access to the firmware of a charging station, a file at can be accessed to obtain default credentials that are the same across all Iocharger AC model EV chargers. This issue affects Iocharger firmware for AC models before firmware version 25010801. The issue is addressed by requirin...
CVE-2024-43659
CVE-2024-43659 affects Iocharger AC-model EV chargers running firmware prior to 25010801. The issue involves a file (redacted path) accessible after gaining firmware access, enabling retrieval of default credentials that are identical across all AC chargers. The vulnerability enables login with t...
iocharger 安全漏洞
iocharger is an electric vehicle charging and smart energy management solution from Galaxy Zhangtan iocharger, a Chinese company. A security vulnerability exists in iocharger. An attacker could exploit the vulnerability to obtain the default credentials that apply to all Iocharger AC model EV...
Zero-day Flaws Exposed EV Chargers to Shutdowns and Data Theft
NCC Group experts share details of how they exploited critical zero-day vulnerabilities in Phoenix Contact EV chargers electric…...
Remotely controlled EV home chargers – the threats and vulnerabilities
We are now seeing signs of a possible shift in the field of personal transport. Recent events such as the 'dieselgate' scandal undermine customer and government confidence in combustion engines and their environmental safety. At the same time there has been a big step forward in the development o...