22 matches found
CVE-2025-68138
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
CVE-2025-68138
In libocpp (the C++ Open Charge Point Protocol implementation used by EVerest), memory leaks occur because pointers returned by strdup are never freed in versions prior to 0.30.1. Each connection attempt leaks newly allocated memory, potentially leading to memory exhaustion and denial of service....
EUVD-2025-206321
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
CVE-2025-68138
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
CVE-2025-68138 EVerest affected by memory exhaustion in libocpp
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
CVE-2025-68138 EVerest affected by memory exhaustion in libocpp
EVerest is an EV charging software stack, and EVerest libocpp is a C++ implementation of the Open Charge Point Protocol. In libocpp prior to version 0.30.1, pointers returned by the strdup calls are never freed. At each connection attempt, the newly allocated memory area will be leaked, potential...
libocpp security vulnerabilities
Libocpp is an open-source Open Charge Point Protocol developed by EVerest. Versions of Libocpp prior to 0.30.1 contained security vulnerabilities. These vulnerabilities stemmed from pointers returned by strdup that were not released, which could lead to memory exhaustion and denial of service...
CVE-2025-59399
libocpp before 0.28.0 allows a denial of service EVerest crash because a secondary exception is thrown during error message generation...
CVE-2025-59399
libocpp before 0.28.0 allows a denial of service EVerest crash because a secondary exception is thrown during error message generation...
CVE-2025-59399
libocpp before 0.28.0 allows a denial of service EVerest crash because a secondary exception is thrown during error message generation...
CVE-2025-59398
The OCPP implementation in libocpp before 0.26.2 allows a denial of service EVerest crash via JSON input larger than 255 characters, because a CiString object is created with StringTooLarge set to Throw...
Improper Cleanup on Thrown Exception
Overview Affected versions of this package are vulnerable to Improper Cleanup on Thrown Exception due to a secondary exception being thrown during error message generation. An attacker can cause the application to crash by triggering an error that leads to this exception. Remediation Upgrade...
Missing Report of Error Condition
Overview Affected versions of this package are vulnerable to Missing Report of Error Condition via the ChargePoint::messagecallback function. An attacker can cause a crash by submitting JSON input exceeding 255 characters, which triggers an exception due to the StringTooLarge parameter being set ...
CVE-2025-59398
The OCPP implementation in libocpp before 0.26.2 allows a denial of service EVerest crash via JSON input larger than 255 characters, because a CiString object is created with StringTooLarge set to Throw...
CVE-2025-59398
The OCPP implementation in libocpp before 0.26.2 allows a denial of service EVerest crash via JSON input larger than 255 characters, because a CiString object is created with StringTooLarge set to Throw...
libocpp 安全漏洞
libocpp is an open charge point protocol open-sourced by EVerest. A security vulnerability exists in versions prior to libocpp 0.26.2, which stems from a crash caused by the creation of a CiString object when processing JSON input of more than 255 characters, potentially resulting in a denial of...
libocpp 安全漏洞
libocpp is an open charge point protocol open-sourced by EVerest. A security vulnerability exists in versions of libocpp prior to 0.28.0, which stems from a minor exception thrown during error message generation that could result in a denial of service...
CVE-2025-59399
libocpp before 0.28.0 allows a denial of service EVerest crash because a secondary exception is thrown during error message generation...
CVE-2025-59399
libocpp before 0.28.0 allows a denial of service EVerest crash because a secondary exception is thrown during error message generation...
CVE-2025-59399
CVE-2025-59399 affects libocpp versions prior to 0.28.0. The vulnerability stems from a secondary exception thrown during error message generation, causing a denial of service (EVerest crash). Multiple connected sources confirm the issue and point to upgrading to version 0.28.0 or later as the re...