Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 12/04/2024 Updated: 12/04/2024

The server in Circontrol Raption up to and including 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root. The ocpp1.5 and pwrstudio binaries on the charging station do not use a number of common exploitation mitigations. In particular, there are no stack canaries and they do not use the Position Independent Executable (PIE) format.

The server in Circontrol Raption versions through 5112 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 562) is vulnerable to OS command injection ...

Full Disclosure mailing list archives   By Date By Thread </form>    Circontrol EV Charger vulnerabilities (CVE-2020-8006, CVE-2020-8007)  <!--X-Head-of-Message ...

https://circontrol.com/intelligent-charging-solutions/dc-chargers-series/raption-150/https://seclists.org/fulldisclosure/2024/Mar/33 https://nvd.nist.gov https://seclists.org/fulldisclosure/2024/Mar/33

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-8006

Vulnerability Summary

Exploits

Mailing Lists

References

Vulmon Search

About

Products

Connect