4 matches found
CVE-2026-27028
CVE-2026-27028 affects WebSocket endpoints used by OCPP implementations. The issue is lack of authentication, allowing unauthenticated attackers to connect with a charging station identifier and impersonate a charger, issue or receive OCPP commands, and potentially escalate privileges, take unaut...
CVE-2026-26305
CVE-2026-26305 concerns a WebSocket API that does not enforce a limit on authentication requests. Multiple sources (NVD, Red Hat, ENISA EUVD, CVE listing, vuln enrichment) describe the root cause as missing rate limiting, enabling potential denial-of-service by suppressing or misrouting charger t...
CVE-2026-22878
Technical details (affected product/component, root cause, impact, fixes) are not publicly provided in the connected documents; monitor for updates.
CVE-2026-27647
Technical details (affected products, versions, and root cause) are not publicly provided in the supplied documents. Monitor for updates from CVE sources and affected vendors.