An issue exists in Dalmann OCPP.Core up to and including 1.2.0 for OCPP (Open Charge Point Protocol) for electric vehicles. The server processes mishandle StartTransaction messages containing additional, arbitrary properties, or duplicate properties. The last occurrence of a duplicate property is accepted. This could be exploited to alter transaction records or impact system integrity.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dallmann-consulting open charge point protocol |