4 matches found
CVE-2023-49956
Summary: CVE-2023-49956 affects Dalmann OCPP.Core prior to 1.3.0 . A vulnerability allows a StopTransaction message with any random transactionId to terminate active transactions. Impact : termination of ongoing transactions on affected deployments. Affected versions : Dalmann OCPP.Core before 1....
CVE-2023-49958
Summary (CVE-2023-49958): Dalmann OCPP.Core (up to version 1.2.0) mishandles StartTransaction messages that include extra or duplicate properties; the last duplicate property is accepted, which may enable tampering with transaction records and affect system integrity. Affected product: Dalmann OC...
CVE-2023-49957
CVE-2023-49957 affects Dalmann OCPP.Core prior to 1.3.0. The issue allows multiple transactions using the same connectorId and idTag, violating ConcurrentTx expectations and potentially causing billing/transaction management errors. Affected software: Dalmann OCPP.Core (
CVE-2023-49955
CVE-2023-49955 affects Dalmann OCPP.Core prior to 1.2.0. The vulnerability arises from not validating the length of the chargePointVendor field in a BootNotification message, which can cause server instability and a denial of service when processing excessively large inputs. The issue is document...