Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2026/03/26 5:16 p.m.1 views

CVE-2026-27815

EVerest is an EV charging software stack. Prior to versions to 2026.02.0, ISO15118chargerImpl::handlesessionsetup copies a variable-length paymentoptions list into a fixed-size array of length 2 without bounds checking. With schema validation disabled by default, oversized MQTT Cmd payloads can...

9.1CVSS0.00015EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/03/26 4:32 p.m.17 views

CVE-2026-27816 EVerest's ISO15118 update_energy_transfer_modes overflow can corrupt EVSE state

EVerest is an EV charging software stack. Prior to versions to 2026.02.0, ISO15118chargerImpl::handleupdateenergytransfermodes copies a variable-length list into a fixed-size array of length 6 without bounds checking. With schema validation disabled by default, oversized MQTT Cmd payloads can...

6.9CVSS0.00047EPSS
Exploits0References1
OSV
OSVadded 2026/03/26 4:30 p.m.0 views

CVE-2026-27815 EVerest: ISO15118 session_setup payment options overflow can corrupt EVSE state

EVerest is an EV charging software stack. Prior to versions to 2026.02.0, ISO15118chargerImpl::handlesessionsetup copies a variable-length paymentoptions list into a fixed-size array of length 2 without bounds checking. With schema validation disabled by default, oversized MQTT Cmd payloads can...

6.9CVSS5.9AI score0.00015EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/03/26 4:30 p.m.2 views

CVE-2026-27815

EVerest is an EV charging software stack. Prior to versions to 2026.02.0, ISO15118chargerImpl::handlesessionsetup copies a variable-length paymentoptions list into a fixed-size array of length 2 without bounds checking. With schema validation disabled by default, oversized MQTT Cmd payloads can...

6.9CVSS5.8AI score0.00015EPSS
Exploits0References2Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-8171

Malware in sbrugna...

8.7CVSS8.6AI score0.00494EPSS
Exploits0References2
Prion
Prionadded 2022/09/23 7:15 p.m.19 views

Cross site scripting

A cross-site scripting vulnerability exists in Rocket.chat v5 due to style injection in the complete chat window, an adversary is able to manipulate not only the style of it, but will also be able to block functionality as well as hijacking the content of targeted users. Hence the payloads are...

4.9CVSS5.3AI score0.00273EPSS
Exploits1References1Affected Software1
Github Security Blog
Github Security Blogadded 2022/05/24 5:11 p.m.28 views

Golang Facebook Thrift servers vulnerable to denial of service

Golang Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload. As a result, malicious clients could send short messages which would result in a large memory allocation, potentially leading to denial of service. This issue affects...

7.5CVSS7AI score0.00536EPSS
Exploits0References5Affected Software1
Fortinet
Fortinetadded 2019/05/17 12:0 a.m.21 views

Protect

Failure to properly parse message payloads in the SSL VPN portal of FortiOS may allow a non-authenticated attacker to perform a Denial of Service attack via exploiting a buffer overflow...

5CVSS7.3AI score0.00534EPSS
Exploits0Affected Software1
Rows per page
Query Builder