7 matches found
EUVD-2024-23294
Malicious code in bioql PyPI...
CVE-2024-25998
An unauthenticated remote attacker can perform a command injection in the OCPP Service with limited privileges due to improper input validation...
CVE-2024-43661
The CVE-2024-43661 entry describes a buffer overflow in the .so library used by iocharger’s AC-model firmware, exploitable by sending a long file path to the .exe CGI binary or .sh CGI script. The vulnerability affects Iocharger firmware before 24120701. Impact is high: the process (likely OCPP)...
CVE-2024-43661 Buffer overflow in <redacted>.so leads to DoS of OCPP service
The .so library, which is used by , is vulnerable to a buffer overflow in the code that handles the deletion of certificates. This buffer overflow can be triggered by providing a long file path to the action of the .exe CGI binary or to the .sh CGI script. This binary or script will write this fi...
CVE-2024-43661 Buffer overflow in <redacted>.so leads to DoS of OCPP service
The .so library, which is used by , is vulnerable to a buffer overflow in the code that handles the deletion of certificates. This buffer overflow can be triggered by providing a long file path to the action of the .exe CGI binary or to the .sh CGI script. This binary or script will write this fi...
CVE-2024-25998
Phoenix Contact CHARX SEC vulnerable to command injection in the OCPP Service due to improper input validation. Affected: CHARX SEC-3000 (and CHARX SEC-3100 per related advisories) with versions prior to v1.5.1. Impact: unauthenticated, remote attacker can potentially execute arbitrary code on af...
CVE-2024-25998 PHOENIX CONTACT: Command injection in the OCPP Service
An unauthenticated remote attacker can perform a command injection in the OCPP Service with limited privileges due to improper input validation...