Charx Sec-3100 Firmware Security Vulnerabilities and Issues — Charx Sec-3100 Firmware CVE List

Lucene search

PhoenixcontactCharx Sec-3100 Firmware

6 matches found

CVE•added 2024/03/12 9:15 a.m.•52 views

CVE-2024-25999

An unauthenticated local attacker can perform a privilege escalation due to improper input validation in the OCPP agent service.

8.4CVSS8.5AI score0.00045EPSS

CVE•added 2024/03/12 9:15 a.m.•48 views

CVE-2024-26288

An unauthenticated remote attacker can influence the communication due to the lack of encryption of sensitive data via a MITM. Charging is not affected.

8.7CVSS8.6AI score0.00112EPSS

CVE•added 2025/07/08 7:15 a.m.•8 views

CVE-2025-25268

An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint resulting in read and write access due to missing authentication.

8.8CVSS6.6AI score0.00024EPSS

CVE•added 2025/07/08 7:15 a.m.•7 views

CVE-2025-25269

An unauthenticated local attacker can inject a command that is subsequently executed as root, leading to a privilege escalation.

8.4CVSS6.6AI score0.00047EPSS

CVE•added 2025/07/08 7:15 a.m.•7 views

CVE-2025-25271

An unauthenticated adjacent attacker is able to configure a new OCPP backend, due to insecure defaults for the configuration interface.

8.8CVSS6.6AI score0.0002EPSS

CVE•added 2025/07/08 7:15 a.m.•6 views

CVE-2025-24003

An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting in a loss of integrity for only EichrechtAgents and potential denial-of-service for these stations.

8.2CVSS6.8AI score0.00107EPSS